Phishing is not done at sea
By Theon Alleyne, CRCP, CCEP , USA Senior Managing Consultant, IBM
Phishing is not done at sea. It is a land based activity where fraudsters try to get you to take the bait.
𝙁𝙧𝙚𝙚 𝙈𝙤𝙣𝙚𝙮 Scam
𝕆𝕟 𝕞𝕦𝕝𝕥𝕚𝕡𝕝𝕖 𝕝𝕖𝕧𝕖𝕝𝕤, 𝕥𝕙𝕖𝕣𝕖 𝕚𝕤 𝕟𝕠𝕥𝕙𝕚𝕟𝕘 𝕗𝕣𝕖𝕖 𝕚𝕟 𝕝𝕚𝕗𝕖. 𝕀𝕗 𝕪𝕠𝕦 𝕕𝕚𝕕𝕟’𝕥 𝕡𝕒𝕪 𝕗𝕠𝕣 𝕚𝕥, 𝕥𝕙𝕖𝕟 𝕤𝕠𝕞𝕖𝕠𝕟𝕖 𝕖𝕝𝕤𝕖 𝕕𝕚𝕕. 𝕊𝕒𝕝𝕧𝕒𝕥𝕚𝕠𝕟 𝕚𝕤 𝕟𝕠𝕥 𝕗𝕣𝕖𝕖. ~ Theon Alleyne
Your email address is out there. Some of us shared it publicly, for others, it was part of a massive data dump by fraudsters.
Remember that email you or a relative received saying “Because you are a member of this small business group”, or “Your application for the grant has been approved”. You don’t recall applying for it, but it is sure exciting to get free money.
But, what about the next few lines in the message?
It often goes something like this “𝘛𝘰 𝘨𝘦𝘵 𝘺𝘰𝘶𝘳 𝘨𝘳𝘢𝘯𝘵, 𝘴𝘪𝘮𝘱𝘭𝘺 𝘨𝘪𝘷𝘦 𝘶𝘴 𝘺𝘰𝘶𝘳 𝘤𝘩𝘦𝘤𝘬𝘪𝘯𝘨 𝘢𝘤𝘤𝘰𝘶𝘯𝘵 𝘯𝘶𝘮𝘣𝘦𝘳, 𝘢𝘯𝘥 𝘸𝘦 𝘸𝘪𝘭𝘭 𝘥𝘪𝘳𝘦𝘤𝘵-𝘥𝘦𝘱𝘰𝘴𝘪𝘵 𝘵𝘩𝘦 𝘨𝘳𝘢𝘯𝘵 𝘪𝘯𝘵𝘰 𝘺𝘰𝘶𝘳 𝘣𝘢𝘯𝘬 𝘢𝘤𝘤𝘰𝘶𝘯𝘵!” 🔥🔥🔥🔥🔥
That is what the scammers are after. Your banking details. When you give it, you pay the price. Nothing is free.
Always safeguard your banking details and resist free money.
Amazon and Package deliveries fraud
“If you didn’t order it, and you weren’t expecting it, chances are, it is part of a scam.” ~ Theon Alleyne
There are two types of delivery phishing scams to discuss. Let’s get into the first called the “Amazon brushing scam”.
Amazon brushing scam
Some people have been very lucky recently, and they are finding items they didn’t order online, arrive at their home.
If you say, “Wow, I always wanted this power drill and these titanium screws”, then you may be applying the tools to yourself.
The bad actors are creating Fake Accounts in your name, and buying products, so that they can create “verified purchaser” comments on Amazon for sellers. The sellers often have no idea that the positive review about their product is part of a scam.
Their next goal of the fraudsters may be actual purchases using your bank or credit card which you did not authorize.
You can stop this fraud by notifying the online store of discrepancy of receiving items you didn’t order. Then monitor your financial statements for activity you did not authorize.
Being proactive stops fraud.
Delivery phishing Scam
The one step delivery phishing scam, is the authentic looking package delivery text or email that simply asks for your personal data very nicely.
The message is usually bad news that you can remedy by sharing your information, and there is always a sense of urgency for you to act.
It may be that the packages will be delayed, or can’t be delivered until you take action. For example, verify your identity by providing your debit / credit card information or other personal data.
If you provide the information, the bad actors win.
You can avoid delivery phishing scams by calling the delivery vendor directly or visiting the delivery vendor’s website to inquire about the package.
What ever you do, don’t click on the links in the text or email, or call the phone number in it. Doing so will deliver you to the sharks.
Computer Technical Support Scam
Now we will examine a scam that often targets the vulnerable among us, senior citizens.
Have you received a pop-up message on your mobile phone, or computer that your device is infected?
Often you are encouraged to click the link or call the telephone number listed to get rid of the virus.
Don’t call and don’t click the link.
Instead, pause and ask the opinion of someone you trust. There is a high likelihood they will tell you it is a scam.
Calling or clicking can lead to a ransomware attack and a lost of data, funds, or both.
If you have been attacked, report it to the authorities. You may be able to protect someone else.
Remember, you don’t give a stranger your car keys, so why give them your password or access to your device?