Welcome to your weekly roundup of the latest scams to be aware of. This week, we’re seeing a notable rise in impersonation scams, phishing attacks, and a new twist on an old classic. Staying informed is the best way to protect yourself and your loved ones from falling victim to these evolving threats.

---

1. New Email Scams to Watch For

Phishing scams remain a persistent and ever-evolving threat. Here’s what’s been reported this week:

• Microsoft 365 Phishing: Cybersecurity researchers have identified a new phishing campaign targeting Microsoft 365 users. The emails are designed to look like routine notifications, such as a voicemail alert or a message from Microsoft Teams, and contain links that redirect to a fake login page designed to steal your credentials. What makes this scam particularly tricky is that attackers are using trusted tools like Bitly and email security services to hide the malicious link and bypass filters.
  • Source: Seton Hall University
• Fake Invoice Scams: Scammers are using fake invoices to create a sense of urgency. Examples reported this week include phony Apple Pay and tech support invoices for services you never subscribed to. The emails urge you to call a provided “customer care” number to dispute the charge. On the call, scammers will try to extract your personal information, gain remote access to your device, or trick you into sending them money to “cancel” the transaction.
  • Source: Bitdefender

2. Phone Scams on the Rise

Phone scams continue to target people with a mix of fear and urgency. Be on the lookout for these schemes:

• Impersonation Scams: The FTC has reported a surge in impersonation scams, with a growing number of older adults losing significant amounts of money. Scammers impersonate government agencies (like the FTC itself) or businesses and contact consumers with a fake problem—for example, their account is being used for crimes, or their identity has been compromised. The goal is to create a sense of panic and persuade the victim to transfer money, deposit cash into a crypto ATM, or hand over cash to a courier to “keep it safe.”
  • Source: PYMNTS.com, Consumer Advice, FTC
• Natural Disaster and Jury Duty Scams: With natural disasters being more common during the summer months, scammers are capitalizing on the chaos. They may pose as contractors offering quick fixes. In a new twist on the classic jury duty scam, scammers are now using fake websites to make their threats seem more legitimate. They will call you pretending to be law enforcement and tell you that you’ve missed jury duty and need to pay a fine immediately.
  • Source: AARP States, FEMA

3. How to Protect Yourself from Phishing Scams

Phishing scams are often successful because they play on our emotions, like fear and urgency. The best defense is to be vigilant and informed.

• Think Before You Click: Always be suspicious of unexpected messages. Hover your mouse over a link before you click to see the actual URL. If it looks suspicious or is shortened, don’t click on it.
• Verify the Sender: If a message from a company or person you know seems unusual, contact them directly using a phone number or email address you know is real. Do not use the contact information provided in the suspicious message.
• Use Strong Passwords and Multi-Factor Authentication (MFA): Use a unique and strong password for every account. Enable MFA whenever possible, as it adds an extra layer of security that makes it much harder for scammers to access your accounts even if they have your password.
• Keep Software Updated: Make sure your devices and applications have the latest security patches. This helps protect against known vulnerabilities that scammers could exploit.
• Avoid Publishing Your Information: Don’t publish your email address or phone number on public websites, as this can be a target for scammers and spammers.
• Sources: NCDIT, CrowdStrike, FBI

4. What to Do if You Think You Are Being Scammed

If you suspect you’ve been a victim of a scam, acting quickly can help limit the damage.

1. Stop All Communication: Do not respond to the scammer. Block their number and email address.
2. Gather Information: Collect all the details you can: phone numbers, email addresses, websites, names used by the scammers, and any financial transaction details.
3. Contact Your Financial Institutions: If you provided any financial information or sent money, contact your bank and credit card companies immediately to report the fraud. They can help you freeze accounts and monitor for suspicious activity.
4. Change Passwords: Immediately change any passwords that may have been compromised, especially if you clicked on a malicious link or entered credentials on a fake website. Use a password manager to help you create and remember unique, strong passwords.
5. Report the Scam:
   • Federal Trade Commission (FTC): File a report at ReportFraud.ftc.gov. The FTC does not resolve individual cases but uses reports to investigate and bring cases against scammers.
   • Internet Crime Complaint Center (IC3): If the scam was online, report it to the FBI’s Internet Crime Complaint Center (IC3).
   • Local Law Enforcement: File a police report with your local police department. This can be important for your own records and for some financial fraud cases.
   • Credit Bureaus: Consider placing a fraud alert on your credit file by contacting one of the three major credit bureaus: Equifax, Experian, or TransUnion.

• Sources: Consumer Finance, FTC, FBI

---

Disclaimer: This information was researched and curated with the assistance of AI, but all sources and links have been reviewed and verified by a human.