Welcome to your this dose of online safety! Today, we’re diving into the latest scams making the rounds, from fake security alerts to deceptive online deals. Staying informed is your best defense against these malicious attacks.
Email Scams to Watch Out For
The “Urgent Security Warning” Phishing Scam
Scammers are impersonating trusted entities like Google to steal your account credentials. They send out convincing emails with “Urgent Security” notifications, claiming that suspicious activity has been detected on your account. The email prompts you to “secure your account immediately” by clicking on a link. This link leads to a fake login page designed to steal your password and other sensitive information.
- How to spot it:
- Check the sender’s address: While the display name may say “Google Security,” the actual email address is often a jumbled string of letters or a non-Google domain.
- Don’t click links: The safest way to verify a security alert is to open a new browser tab and navigate directly to your Google Account or the service in question. Check your security section for recent activity.
- Look for urgency and threats: Scammers use scare tactics to get you to act without thinking. A legitimate company will not threaten you with immediate account closure or other dire consequences.
Other common email scams:
- “Cloud Storage Full” Scams: Emails or texts that appear to be from Apple, Microsoft, or Google, claiming you are out of storage and need to click a link to upgrade.
- Fake Invoices/Renewals: Messages that look like legitimate bills or subscription renewals, designed to trick you into paying for a service you don’t have.
Phone Scams to Be Aware Of
Government and Law Enforcement Impersonators
Scammers are still using a classic tactic: impersonating government agencies like the IRS or law enforcement. They often use “spoofed” phone numbers that appear to be from the official agency. They will threaten you with arrest, deportation, or other legal action if you don’t immediately pay a fee or fine, often demanding payment via gift cards, wire transfers, or cryptocurrency.
Remember: No legitimate government agency will call you and threaten you with immediate arrest if you don’t send money.
Tech Support Scams
You may receive an unexpected call or a pop-up on your computer claiming to be from a major tech company like Microsoft or Apple. They will tell you that your computer has a virus or other serious issue and will try to convince you to give them remote access to your device. Once they have access, they can install malware, steal your data, or demand payment to “fix” the non-existent problem.
Key takeaway: Reputable tech companies will never contact you unexpectedly to tell you about a problem with your computer. If you have a concern, contact them directly using their official, verified support channels.
How to Protect Yourself Against Phishing Scams
Phishing scams are a constant threat, but you can take steps to protect yourself.
Be Skeptical: Always question unsolicited emails, texts, or calls, especially if they create a sense of urgency.
Verify the Source: Before clicking a link or providing any information, verify the sender’s email address. Hover over links to see the actual URL they lead to. It should match the company’s official domain.
Never Use Links in Emails: Instead of clicking a link in an email, go directly to the official website of the company in a new browser tab.
Enable Multi-Factor Authentication (MFA): This is one of the most effective security measures. MFA requires a second form of verification (like a code sent to your phone) in addition to your password, making it much harder for a scammer to access your account even if they have your password.
Use Strong and Unique Passwords: Don’t reuse passwords across different sites. Consider using a password manager to help you create and store unique, strong passwords.
Update Your Software: Keep your operating system, web browser, and antivirus software up to date to protect against new security vulnerabilities.
What to Do If You Think You Are Being Scammed
If you believe you have been targeted by or fallen victim to a scam, act quickly to minimize the damage.
Immediate Actions:
Stop all contact: Immediately cease all communication with the scammer.
Contact your bank/financial institution: If you sent money or provided financial information, call your bank or credit card company immediately. Explain the situation and ask them to reverse the transaction or put a fraud alert on your account.
Change your passwords: If you provided a password to a scammer, change it immediately on that account and any other account where you have used the same password.
Secure your computer: If you gave a scammer remote access to your device, disconnect it from the internet and run a full security scan to remove any malware. You may want to consider a full system reset.
Who to Contact and What to Gather:
Report to the Federal Trade Commission (FTC): The FTC collects scam reports and uses them to investigate and build cases against scammers. You can report the scam at ReportFraud.ftc.gov.
Contact local law enforcement: File a police report. This may be necessary for your bank or other institutions to help you with the fraud.
Report to the Internet Crime Complaint Center (IC3): The IC3 is a partnership between the FBI and the National White Collar Crime Center that deals with internet-related crimes. You can file a complaint at IC3.gov.
Gather Information: Collect any and all information you have about the scam, including:
The scammer’s name, phone number, and email address.
Details of the scam, including how they contacted you and what they said.
Any financial information you shared or transactions you made.
Screenshots of emails or text messages.
Sources & Further Reading:
What To Do if You Were Scammed – Consumer Advice (FTC)
Phishing Attack Prevention: How to Identify & Avoid Phishing Scams – OCC.gov
The Latest Scams You Need to Be Aware of in 2025 – Experian
Tips to Protect Yourself From Phishing Scams – Mass.gov
Disclaimer: This information was researched and curated with the assistance of an AI, but has been reviewed and verified by a human.