This week we’ve found a large number of phishing scams that you need to watch out for, including ones relating to Wells Fargo, Citibank, Kendra Scott, Louis Vuitton, MetaMask, OpenSea, Trust Wallet, Walmart, and more. Would you have been able to spot all the scams?

Phishing scams are one of the scammers’ favorite weapons! Conventionally, while impersonating famous brands, they send out fake text messages and emails containing phishing links and try to entice you into opening them with various lies.

Most commonly, the links take you to fake log-in pages that seem to belong to various brands. These pages require you to submit log-in credentials to check a package’s delivery status, change account settings, or whatever other tasks the scammers have asked you to complete.

Here are a few examples:

Bank Phishing

Recently we’ve detected a lot of fake “security alerts” from well-known banks, including Bank of America, Scotiabank, Citibank, Wells Fargo, HSBC, and more:

• frm:sunc0ast! msg:3. we noticed unusual activities. we have restricted your account. click below to restore your account. hxxps://mackewicz[.]me
• (infoalert by scotiabank) client# 453600**** there was suspicious interac transaction made on 05/03/22, to avoid any suspension on your account, please verify here: hxxps://scologin-management[.]com/.phx3/
• alert* from cltl: due to an unusuai failure, you must compiete the following form to reactivate your account. hxxps://2citi-recover[.]org
• wellsfargo mobile: unusual login attempt on your account. visit 1welluserid[.]online to review and manage your information immediately
• h s b c we’ve noticed unusual activity in your account from a new device. visit hxxp://hsbcealerts[.]com/

Falsely claiming that there are safety issues with people’s bank accounts, scammers prompt potential victims into clicking on the embedded links that lead to fake login pages of the impersonated banks:

If you take the bait and enter your login credentials on one of the fake pages, the scammers can take control of your bank account and transfer all your money out. Stay alert!

Browse the web safely with Trend Micro Check (it’s free!)

Online Shopping Scams

Besides fake security alerts, scammers also love to hook victims in with too-good-to-be-true deals or promotional campaigns. Posing as famous brands or online shops, they create fake online shopping websites and try to trick you into clicking on links to them:

Louis Vuitton

“Louis Vuitton Bags Up To 90% Off!” We’ve reported on a Louis Vuitton email scam before, and now it is live again:

The email leads you to a fake Louis Vuitton website (discountbagsale[.]com). Please keep an eye out for this fake site and remember, the legitimate web address is louisvuitton.com!

Kendra Scott

This week we also spotted several fake Kendra Scott websites – again, please be careful and make sure you’re on the legitimate website (the official one should be kendrascott.com)!

• [girls day promotions] k en dra scott now 70% off! extra $5/$15/$20 off for $75/$100/$200! see all hxxps://www[.]ksjewelys[.]shop/?4 text stop to opt out
• [girls day surprise sale] ken dra scott now 75% off! extra $5/$15/$20 off for $75/$100/$200! see all hxxps://www[.]ksale22[.]com/?6 text stop to opt out

Crypto Scams

We’ve seen way too many cryptocurrency scams lately – they’re everywhere! The scammers are always devising new and creative tricks and tactics to steal your crypto assets:

MetaMask / Trust Wallet

Scammers have been impersonating MetaMask, Trust Wallet, and other crypto wallet services, trying to lure you into clicking on embedded links with fake security email notifications:

To “retrieve your wallet”, you are prompted to click on an embedded link in the email to verify your account. The link then takes you to a fake login page or online form to collect your recovery phrase — scammers can use it to hack into your wallet and transfer every “bit” away. Watch out!

OpenSea

Impersonating OpenSea, a large NFT trading platform, scammers send you fake emails claiming that one of your NFTs has sold and prompt you to click on an embedded button to learn more:

Please note that the email sender’s name can be faked – always double-check the sender’s email address!

The button will take you to a fake OpenSea website that asks you to connect your crypto wallet and enter login credentials that will end up in the scammer’s hands!

Raffle / Survey Scam

Besides fake login pages, the links, in other instances, will lead to online survey pages that state you can claim a gift by filling out an online questionnaire. After you complete to questionnaire, you are prompted to enter credit card details before your “gift” can be delivered. Here are a few examples:

Walmart

We have seen Walmart online survey scams before, and this week we observed a new wave of similar fake Walmart text messages again:

• Hey, there Kenny! You’re one lucky Walmart Shopper! You took 3rd place in our Walmart February 2022 draw. Please get your prize today: <URL>

The link will take you to a fake Walmart online survey page that says you can get an iPad Pro as a reward after completing the questionnaire:

After that, you have to provide your credit card number, expiration date, and even CVC code to get your gift delivered. Of course, NO gift will ever appear; instead, scammers will record the sensitive credentials you submitted and use them for identity theft or just to steal your money!

G-Core Labs s.a.

janis BUSH, youre going to be a Samsung product tester. Thanks to your friend from AURORA who recommended you! Check out the gadgets you will receive and test now! <URL>

How to Protect Yourself

• Double-check the sender’s mobile number/email address.
• Free gifts or prizes are always a major red flag.
• Always go to the official website/application instead of using links from unknown sources.
• Use Trend Micro Check to surf the web safely (it’s free!)
• Add an extra layer of protection to your device with Trend Micro Maximum Security. Its Web Threat Protection, Ransomware Protection, Anti-phishing, and Anti-spam Protection can help you combat scams and cyberattacks. Click the button below to give it a try:

As ever, if you’ve found this article an interesting and/or helpful read, please do SHARE it with friends and family to help keep the online community secure and protected.