Have you received a text message that claims you’ve won a competition you didn’t enter? A parcel delivery fee you weren’t expecting? Or a final demand on a bill you’ve never seen? If you get a text out of the blue that either doesn’t feel relevant or too good to be true, ensure you never click on any links.
The call-to-action is a link
Clicking on a link in a scam text message could expose your phone to malware that may compromise its security, or take you to a fake version of a brand or company’s website to gather personal information. Ask yourself, what is it asking you to do, and is there a way you can find out? For example, if it’s an account-based query, visit your account another way, because it could be a scam text.
The link doesn’t look official
If the link looks dodgy to you, the chances are you’re correct. Links that don’t contain any of the company or brand’s normal URL structure, or use link-shorten tools such as bit.ly, are often giveaways. Equally, if the text message has come from a random unrecognised number, you should be wary about what it asks you to do.
It’s a different style to previous messages
Even if the message appears in the same chain as previous messages from a company or brand, it doesn’t mean this latest one is real – scammers can spoof real phone numbers to make them look authentic. So, does it look like all the others you’ve received? Is the style different? Is it asking you to do something they’ve never asked before?
For example, if previous messages have asked you to log into your account via an app, but this latest one says to click a link, it may not be genuine.
All the usual signs
As with email and phone scams, the common traits are the same for text scams. Does it convey a sense of urgency (positive or negative), often coupled with a threat to meet a deadline. Does it contain spelling or punctuation mistakes? And is it asking you for personal details? If in doubt, as mentioned above, ensure you never click on any links.
QR codes have become a popular way to open websites and pay for products and services. But not all of them are secure. Cyber criminals can use QR codes to steal personal and bank details. Here we tell you what you can do to avoid QR scams.
Quick response or “QR” codes are like barcodes. When we scan them with a mobile phone camera, a link to the information they hold appears.
In today’s digital world, QR codes are used to browse restaurant menus, to connect to public Wi-Fi, to pay for parking, and to redirect users to a website.
For cyber criminals, the QR code fad creates an opportunity to steal people’s identities or hack into their bank accounts and make off with their money.
QR code scams
QRshing is a form of phishing. It uses QR codes to send users to a fake website that spreads malware or elicits confidential information. Cyber criminals posing as real companies send phishing emails with a QR code and ask users to scan it. Then, they attempt to obtain information or spread virus-infected files.
Another common scam is the false QR code stuck on top of an original one, like in restaurants and street advertising. False QR codes can even be found on parking meters, linking to a credible but fake payment site to steal money or credit card information.
Scams that use inverted QR codes are also gaining traction. Scammers first create a malicious code and then use it as a presumed payment method. But the code does exactly the opposite: it solicits money from whoever scanned it. Instead of paying the merchant for an item or service, the malicious QR code makes the merchant pay the scammer. This type of scam is also used to steal personal information and bank details.
How to avoid a QR scam
Before scanning a QR code, like in a restaurant or some other public space, check that it hasn’t been tampered with or got a sticker placed over an original code.
Installing anti-virus software to verify original QR codes that do not contain malicious links will help you avoid having a virus or other malware downloaded onto your mobile.
Double-check the preview of the QR code link. When you scan a QR code, a preview of the URL should appear. Make sure the website address is legitimate. Look for a padlock symbol and an address that begins with “https://”. Only those URLs are secure.
Think twice if the app or website you’re being directed to asks you to provide personal details. If it does, make sure it’s authentic.
In the UK, one in every five minutes spent online is on social media platforms. They are where we catch up with friends, shop, job hunt, or even look for love with many of us using these sites/apps on a daily basis. Each day the average UK internet user spends 39 minutes on sites such as Facebook, Instagram, Tinder, WhatsApp and LinkedIn. Some of us may be spending even more time online as we find ourselves at home more often than we’d like to be. Unfortunately, some scammers are using the platforms that we know and trust to trick people into parting with their money.
We’ve compiled a list of the top four scams seen taking place on social media.
Purchase scams
Facebook, Instagram and Snapchat are all amazing ways for us to keep up with our friends and families, especially in the current climate. They’re also where many people find the latest clothing trends, phones, or games console for what appear to be competitive prices. But how can you tell if these goods really exist and are going to be delivered?
If you have to send money prior to receiving the goods, try and arrange to send it via a secure platform such as Paypal (and don’t use the friends and family feature if you are sending the funds to a stranger) or offer to pay a deposit before the item is sent. If a seller refuses, this may be an indication that it is a scam. If you’re looking at splashing some serious cash (such as for a car or holiday), we would recommend doing thorough research on the seller, such as checking to see if they have online reviews and also requesting to see documentation, such as an invoice before handing over any money. If the price seems too good to be true, then it probably is.
Impersonation scams
“Hey, I need a favour. I’m struggling to pay my rent. Would you be able to transfer £300 to me and I’ll pay you back on payday? ”
What would you do if you received this message via Facebook Messenger from a friend or family member? You’d want to help them if you could, but bear in mind that many social media platforms can be hacked, and fraudsters will reach out to contacts asking for money, appealing to people’s good nature. They may even read through previous messages sent by the hacked person’s account so they know how to mimic their tone of language, making their message seem even more convincing. The best way to avoid this scam is a good old fashioned phone call to your friend on a trusted phone number to confirm that it genuinely was them sending the request.
Romance scams
So you’ve swiped right on Tinder and found the perfect match for you! You have great conversations and spend weeks messaging back and forth. Then out of the blue, they ask you for £1,000 because they need to help a sick relative abroad with their medical bills.
This is just one scenario that a fraudster might use to try and persuade you to send them money. They may also play with your emotions by advising they are sick/in danger or try and convince you they are in love with you.
Scammers will often use pictures of models found on Google on their dating apps/website profiles to make them appear to be the ideal man/woman so if possible try and do a video call to make sure you are speaking with the person in the pictures. If they are avoiding phone or video calls with you, this could be an indication that they are not who they say they are.
Do some research on this person – you can check their Facebook, Instagram and Linkedin pages and if things don’t add up, this may also suggest you are not speaking to a genuine person. Anyone can fall for a romance scam, they are often complex and can take place over a long period of time, so don’t be embarrassed to express any concerns with a friend or family member.
Investment scams
’Get rich quick’ or ’double your money’ investment posts encouraging you to invest in foreign exchange (AKA Forex), cryptocurrencies and binary options are plastered all over social media, and are particularly prevalent on Snapchat and Instagram at the moment. These investments almost always don’t exist. Genuine investment companies would never approach clients over social media and would always be registered on the FCA register.
Christmas is a time when it’s so easy to get distracted – presents to buy, family and friends to feed and, often, it involves more travelling than the big fella with the beard. But when there’s so much going on, it’s easy to let your normal common sense lapse. Scammers know that all too well, meaning the holiday season is a prime opportunity for them
How to spot scam websites
Have you ever been on a website that just feels a bit off? Something about it that doesn’t feel right? One of the most prevalent scams during the Christmas season are fake websites. Scammers create sites that mimic well-known retailers, offering enticing deals and discounts to make you want to click. These scam websites can be very convincing. But interacting with them gives criminals either your personal details, your money or both.
While losing money is bad for obvious reasons, criminals stealing your personal details is no laughing matter either. If they get vital information, such as your name, login credentials or credit card number, they can use them for identity theft or sell these details to other criminals on the dark web.
How to avoid scam websites:
Stick to online shopping sites you know and access them only through their official websites.
Check the website URL (web address) for any mistakes.
If it’s an online store you don’t know or haven’t previously used, check their contact information and returns policy, as legitimate shops don’t hide them.
Search for reviews on trusted review sites. Watch out for exclusively positive reviews from profiles that sound fake, such as Amy113 and Tim231.
How to spot too good to be true deals
We’re all hunting for the biggest bargains this Christmas, especially with the cost of living. But our search for great offers can lead to taking bigger and bigger risks. While many Christmas shopping deals are genuine, some are just too good to be true. Scammers may advertise products at unrealistically low prices to lure shoppers.
But let’s face it, no one is going to sell a new iPhone for £100. Once a payment is made, the scammer disappears. Alternatively, you’ll get something totally different than what was promised. Another trick is to offer a discount for a very limited time. For example, saying a sale ends in just 10 minutes. This trick is used to make you buy fast and carelessly, so you don’t have time to validate the seller’s authenticity.
How to avoid too-good-to-be-true deals:
Be sceptical of deals that seem too good to be true, and very short-lasting deals.
Shop with well-known, reputable retailers.
If you do see a deal with a retailer you’ve never shopped with previously, do you know someone who has previously shopped there who could recommend them?
Like with fake websites, check trusted review sites and check social media for any complaints.
Use price-comparison websites to ensure the deal is consistent with the market price.
How to spot delivery scams
When time is short, online retailers are convenient. But while you might gain time in skipping the high street, you’ll often lose it again waiting for the deliveries to come. That can cause anxiety, especially if you need to head out on other errands, and scammers will seize on that apprehension. That’s why they’ll try their luck sending fake delivery notifications as a text message to your phone – even managing to mimic the company’s name in the sender line.
These scam messages seemingly come from the likes of FedEx, DHL, Evri or other well-known delivery companies claiming they have a package waiting for you. To arrange a delivery, they will ask you to install their app or click the link in the message. However, these apps or links are malware that may steal your bank credentials and eventually your money.
How to avoid delivery scams:
Verify the tracking number independently through the official carrier’s website.
If you need to arrange a delivery, do it from the carrier’s web page or on the phone.
Do not install applications outside of official app stores and have antivirus installed.
Never click on a link. Again, anything that needs to be verified can be done independently through official channels.
Be cautious when providing personal information in response to unsolicited delivery notifications.
How to spot email scams
Your inbox will be filled with emails this time of year from lots of high street or online retailers featuring great Christmas offers and deals. But amongst them will also be scam emails. Scam emails combine many of the tricks mentioned above and are one of the most common ways that scammers will use to try and steal your money and personal information.
They are disguised as coming from well-known brands and direct you to scam websites with enticing offers or delivery notifications. Another typical trick is to tell you that your payment or credit card was declined, and to change it, you just must enter your credit card number again. Scam emails can also lure you to download malicious attachments.
How to avoid email scams:
Always double-check the email sender’s address. Legitimate retailers use domain names that match their brand.
Be wary of unsolicited emails and don’t click on suspicious links. Instead, visit the retailer’s official website directly.
If an email says that your payment or card was declined, go to the service in question through their website, not the link in the email.
Don’t open suspicious attachments. If your antivirus warns you, do not skip the warning.
How to spot social media scams
We spend a lot of time on socials, and these platforms can be a great way at finding deals, discovering new products (#TikTokMadeMeBuyIt) or entering giveaways or competitions. But, you’ve guessed it, because these are popular online pastimes, scammers will try and lure you in on social media platforms, often through fake contests.
You’ll have seen these posts or received direct messages like these in the past. These posts promise free products or gift cards in exchange for personal information or sharing the post.
How to avoid social media scams:
Verify the legitimacy of the social media account or page before participating in any giveaway or contest.
Be cautious when asked to provide personal information in exchange for freebies.
It’s important to recognise that scammers are active all the year-round. While they may amplify their efforts during Christmas, they don’t take a holiday for the rest of the year. Whether it’s Christmas or any other time of the year, remember to remain informed, stay safe, and safeguard your financial well-being. Happy shopping, and may your online journeys always remain free from scams.
Facebook is where people connect, and in recent years more people have been using Facebook to connect in another way: buying and selling with each other. This activity started in Facebook Groups and then Meta introduced Marketplace, a convenient destination to discover, buy and sell items with people in your community. Anyone with an active Facebook account can list or buy items with no hidden fees, however there has been a recent increase in people getting scammed when shopping for things like cars, tickets and clothes on Facebook Marketplace.
Fraudsters pretend to be genuine sellers
Social media and online marketplaces often fail to stop fraudsters from offering items for sale. Fraudsters may seem like other sellers, appearing friendly and giving away personal details to make you believe they’re genuine. All they want is for you to send money to their bank account. Fraudsters won’t let you pay by card or another way that protects your money.
Here are some things to look out for:
Is it too good to be true?
•
It’s not a bargain if it never turns up.
Do you have to pay right away?
•
A genuine seller won’t pressure you into a quick sale.
Can you meet the seller in person?
•
Look for things nearby so you can check the item before you pay.
Will they let you pay by card?
•
Never pay by bank transfer. Pay by debit or credit card to protect your money.
The most common items fraudsters sell
Fashion
Popular items like designer clothes and trainers are favourites for fraudsters to sell.
Can you pay by card? Is the item available elsewhere at the same price? If not, it could be dodgy.
Vehicles
The DVLA website lets you check a vehicle for free.
Before buying a vehicle, inspect it and have a test drive. The vehicle may be genuine but the advert could be fake.
Fraudsters often promise to deliver a vehicle or a vehicle part if you pay upfront.
Tech
Computers, game consoles and smart phones may be cheap for a reason.
Be suspicious if you can only pay by bank transfer.
Holidays
Avoid a holiday or rental nightmare.
Genuine companies are protected by ABTA or ATOL.
Be suspicious if someone wants you to pay outside a booking site.
Use your card to protect your money.
Tickets
Tickets for sold out or popular shows and events may tempt you.
Always pay by card or a payment service that offers buyer protection.
And only buy from ticket companies or sites registered with The Society of Ticket Agents and Retailers (STAR).
While fraud and scams are not new, advances in technology give criminals more ways to attempt to access your money. Getting to know the techniques they use can help you protect yourself and your money.
Fraud or scam?
In everyday use, the words fraud and scams are used interchangeably. However, we think it’s useful to use clear definitions.
Fraud happens to you, scams happen with you.
Examples of fraud would be having your card skimmed, identity theft and computer malware which steals your details. In these cases, you’re not aware of what the criminals are doing and haven’t given your authorisation.
Examples of scams would be where a criminal attempts to convince you to send them money, give away access to your bank details or launder money. Scams actively involve you as the account owner and work through engineering a situation to make you believe it’s genuine, so you give your authorisation.
Below are some of the most common types of fraud and scams.
Remote access scam
Remote access scams attempt to convince you to allow them access to your Online Banking. These are often cold calls from scammers who say that they’re from telecommunication or computer companies or (for businesses in particular) an IT department or Technical Support.
The warning signs are:
a cold-caller says they can fix your slow computer or refund you money
an unexpected call from someone claiming to be from your IT department or Tech Support
the caller asks you to give permission for them to remotely access your computer
the caller asks for your banking or personal details.
These callers will ask you to log on to your Online Banking, to check it’s not been impacted by the fault, and then attempt to remotely access the computer to ‘help’ you with the problem.
Giving anyone remote access allows them to release malicious software and gain access to personal data.
Cash machine skimming
Using a cashpoint is easy, convenient and almost always safe. But sometimes criminals tamper with cash machines to steal your card information, or PIN.
Here are a few things to look out for when you use a cashpoint.
A device might be placed over the card slot which scans your card details, or a fake keypad may have been placed over the top of the real one. Look out for parts of the cashpoint machine that appear a different colour or material to the rest.
Tiny cameras the size of a pinhead can be drilled into cash machines which photograph you and your card while you take cash out. Look out for damage or possibly stickers that could be trying to cover up damage where holes have been drilled.
Someone could simply be looking over your shoulder while you’re taking out cash to try and see your PIN. Then they find a way to take your card by distracting you.
Keeping yourself safe at the cashpoint:
if the cash machine looks like it has been tampered with, don’t use it
when entering your PIN, cover it with your hand
look out for anybody standing too close or trying to distract you.
The concept of The Cloud is that instead of storing all of your data and computing power locally, you can outsource it to managed cloud service providers. You can run applications, save data, send email, and more using computing power that isn’t stored locally. For example, you may be running short on space on your computer or phone to store photos and large documents. The other benefit is that if your computer or phone is lost or destroyed somehow then everything will be saved and retrievable. Some cloud providers will give you free storage up to a certain limit.
Provided by Microsoft as part of Windows, 5GB provided free, very easy to sync files across different devices
A basic account provides 2GB storage, its easy to share files with others
Google Drive has strong file sharing capabilities, and more free storage space than most competitors—15GB, though that space is shared with Gmail
Apple’s service for providing cloud storage. Stored files can be hared with Apple devices
Prime members get 5GB of storage for “free” with Amazon Cloud Drive for file storage
Impersonation scams happen when a fraudster contacts you pretending to be from your bank, the police, or another trusted organisation to convince you to send them money.
They’ll create a sense of urgency, a reason to panic to stop you from thinking straight. They may tell you that you’ve been a victim of an attempted fraud or had an overpayment that needs to be returned. They may even give you details of a false spend on your account which you don’t recognise, or that your account is no longer secure and that you need to take urgent action. They’ll insist that, in order to keep your money safe or prevent further losses, you need to move your money to a ‘safe’ or newly opened account.
Many fraudsters use something called ‘spoofing’. This is where someone deliberately falsifies how their contact number appears on the caller ID, messenger name, or email address to disguise their identity and try to convince you that they’re someone else.
Common impersonation scams
Fraudsters will use a variety of methods to contact you, so always be cautious and check that the request is genuine. See below for some examples of impersonation methods.
Telephone, text, or email
This is when someone contacts you claiming to be someone they’re not, for example your bank, Amazon, HMRC, a parcel company, or even the police. Fraudsters want you to act urgently and try to pressure you into clicking a link, revealing your security details, or to transfer or withdraw your money.
Social media
Fraudsters send messages or make contact through messaging services like WhatsApp, direct messages, Facebook and any social media platform. They may pretend to be a friend or loved one in need of help.
Online banking is becoming a necessity, with benefits such as keeping control of your finances from home or on holiday via a website or app.
If that’s not liberating enough, you can transfer money between accounts, send money to people you know, and set up or cancel direct debits and standing orders – all without visiting a branch.
Most banks give lessons to help, while Age UK has terrific advice on its website and offers computer classes. Here are a few of our essential tips:
Do set up your online banking carefully, download the correct app and follow your bank’s instructions to the letter.
Don’t share those details with anyone unless it’s an emergency or you completely trust them, such as a next of kin.
Do take some time to play with the app’s features and familiarise yourself with the layout.
Don’t mistake online banking for being unsafe. Most have the highest levels of digital security and log you out automatically after use.
Do look for ‘HTTPS’ before the website name in the address bar of your web browser. The ‘S’ stands for secure and means it is protected.
Don’t reuse the same passwords for different accounts.
Do be cautious with public computers. The one in your local library might not be secure, so check with staff.
Don’t share passwords or PIN numbers. Banks will never ask you for these in full. If they do, it’s fraudulent.
Do view your balance frequently to check for irregularities and raise any concerns immediately.
BT scam emails are attempting to capture your card details. Here are the common phishing tactics you need to watch out for.
An increase in the number of BT scam emails purporting to be from BT has led to a warning from Action Fraud. Have you received one of the fakes?
Last month Action Fraud stated that it had received 676 reports in just two weeks regarding the latest scam emails pretending to be from BT.
Like with most phishing emails, the scammers’ goal is to get you to follow a link to a phishing website that will then attempt to steal your bank/card details.
WHAT DO THE SCAM BT EMAILS LOOK LIKE?
In these cases, the scammers are relying on their fake emails to find their way to genuine BT customers. They state that ‘your monthly bill is ready’ and instruct the recipient to ‘pay’ that bill by clicking through to a fake website.
The emails and the website have nothing to do with BT. If you enter your card details on these sites to ‘pay’ a bill then you will have given your information directly to fraudsters.
While many fake emails rely on a sense of urgency or panic, the tactics behind this email are entirely based on appearing genuine. If you’re expecting a bill from BT then the straightforward nature of the email’s request may be enough to catch you off guard.
HOW CAN I SPOT A FAKE BT EMAIL?
If you are a BT customer and you’ve received an email out of the blue requesting payment do not interact with it. BT states that it will never ask customers for private/personal details or banking information out of the blue.
Rather than follow links in emails claiming to be from BT, instead, log in to your BT account via its official site. Do this entirely separately from the email and be sure you’re not following any links.
If you remain unsure whether you have a bill to pay or you think there may be issues with your account then contact BT directly to check.
I THINK I’VE BEEN SCAMMED BY A FAKE BT EMAIL: WHAT SHOULD I DO?
If you think you may have entered sensitive information, such as your bank/card details, into a third-party site you were taken to by a suspicious BT email, you must let your bank know what’s happened via its official channels ASAP.
You can report a scam and get your money back. Your bank should work with you to cancel your card, block any pending payments (if required) and refund the money you’ve lost.
You should also then keep an eye out for any follow-up scams that could occur if you’ve given contact details, such as your email address, postal address or phone number away to fraudsters. Treat any contact you receive out of the blue with caution.
HOW CAN I REPORT BT SCAM EMAILS?
Emails that impersonate BT can be forwarded directly to the brand on phishing@bt.com(opens in new tab)
Fake emails and phishing websites can also be reported to the National Cyber Security Centre at report@phishing.gov.uk(opens in new tab) – action can then be taken to remove these websites.
If you’re going to warn friends and family about a scam, send them a screenshot instead of forwarding suspicious emails directly.
BT customers can also go to www.bt.com/scams(opens in new tab) to get advice on how to spot and handle a scam call, email or text.
Privacy & Cookies: This site uses cookies. By continuing to use this website, you agree to their use.
To find out more, including how to control cookies, see here:
Cookie Policy
Recent Comments