We all know what it’s like to receive a pop-up message congratulating us for being the one-thousandth customer who gets gifted a free iPad. Of course, on a good day, when we have our wits about us, we don’t think twice and simply close the message, preventing any scammer from accessing the information they’re angling to get. But no matter how hard you try to be aware at all times, cybercriminals will continue to work hard to swindle your hard-earned money and personal info.
But what are the most common online scams that we all encounter?
Here’s our top 3 and how you can avoid falling victim to them:
- Advance-fee fraud
In this scam, a criminal promises you products, money, or services in return for a minimal upfront fee. The scammer typically offers you an incredible opportunity that might seem difficult to pass up. “Opportunities” like unexpected lottery winnings if you sign up (and pay) for … or a survey with the promise of a $500 gift card upon completion. Regardless of how the crook words the scam, you will lose the fee you paid and never see the money promised.
If you receive such correspondence, it’s best to ignore it. And no matter who the survey appears to have come from, never send money or share banking information with strangers.
Remember, if it seems too good to be true, it usually is.
- Phishing attacks and unexpected attachments
Phishing scams often land in your inbox as legitimate-looking texts, emails, or pop-up messages. They can appear to be from Apple, Facebook, Netflix, PayPal, a bank, or any other legitimate company that you may do business with. The messages typically request that the recipient click a link to verify usernames, credit card numbers, passwords, account numbers, and more.
Although these messages might seem legit, the sender is actually a nefarious actor tricking users into giving away their personal information.
Another common phishing scam tricks people into downloading malware onto their device by asking the recipient to download an attachment. The attachments often pretend to be unpaid invoices, electronic gift cards, job acceptance letters, or “notes” for meeting preparation.
As a best practice: never click on attachments you were not expecting to receive, especially if the message comes from an unknown person or source. Always verify the legitimacy of the message you receive before taking action, especially if the message includes a call to action regarding money transfers, deposits, or a request for personal information.
Always verify links by hovering over them before clicking. When you hover your mouse over the message, you might find that the links are misspelled (mail.gooogle.com) or have the wrong domain suffix (LinkedIn.cc).
Even if you receive an email appearing to be from your bank asking you to verify personal information, do not simply click on the link included. Instead, type your bank’s URL in your search bar and access your bank account on your own.
Trust your gut: when something feels off or wrong, there’s a good chance that it is.
And remember that phishing occurs not only through email but also over the telephone, also referred to as voice phishing or vishing. If someone calls or texts you out of the blue and asks for personal information, hang up and call the number that the message originated from to verify the caller. Always.
- Tech support scams
Maybe you or someone you know has run into a scam like this. A phone call comes in, or a pop-up message on your monitor tells you that your computer has been infected with something terrible. You are given a phone number or email to chat with a technician for help. When you do, the “technician” will explain that they have found malware on your device, and you will ask you to download some software to help you “fix it,” or the “technician” might recommend that you buy a fake antivirus to clean your machine.
Please don’t fall for it! If it’s too late and you’re knee-deep in by the time you realize there might be something phishy going on, hang up. End the call, completely shut down your engine, and restart the computer. Then do a thorough malware scam with genuine antivirus software, contact your local IT services provider or look up the genuine customer service number for the company associated with the message (e.a. Microsoft, Gmail, Quickbooks, etc.) to take care of the issue. Never give out personal information, credit card number, or let anyone install any software on your computer unless you’re 100% confident you’re talking to a trusted partner.
How can you help others?
Now that you know how to catch and avoid these scams, it’s time to understand the importance of educating your employees. Training your staff will help you reduce the risk of potential threats to your company’s network.
Breaches can be costly and often take time to repair, resulting in downtime for your business. Educating your team on the risks of cybercrime will make it less likely that they will fall for an attack and that you’ll have to deal with the aftermath of one.
Cybersecurity training is a smart way to minimize risk within your business; it will help your employees make better decisions in defense of your network and give you a better ROI on your IT security investment. It’s a solid long-term investment.
Meeting Tree Computer has educated businesses across the Hudson Valley about cybersecurity best practices since 1999. If you’d like to learn more about us, about security awareness training for your team, or request a free IT Assessment, contact us today: (845) 237-2117. Our technicians are standing by to answer your call.