Amazon, PayPal, iCloud, USPS, FedEx, Costco, T-Mobile, Citibank, & MORE — Top Phishing Scams of the Week
This week we’ve found a large number of scams that you need to watch out for, including ones relating to Amazon, PayPal, iCloud, USPS, FedEx, UPS, Walmart, Home Depot, Costco, T-Mobile, Citibank, and Ray-Ban. Would you have been able to spot all the scams?
Phishing Scams
This week we found several phishing scams. Conventionally, while impersonating famous brands, scammers send out fake text messages and emails containing phishing links and try to entice you into opening them with various lies. Below are some examples featuring different excuses (lies):
Security Alerts
Falsely claiming that there are safety issues with your online account, scammers prompt you to take action to “recover” or “verify” your account via the attached links that lead to fake login pages of the impersonated brands.
These pages require you to submit log-in credentials to download a software update, change account settings, or whatever other tasks the scammers have asked you to complete. Scammers can record any log-in information you submit so they can use it to gain control of your account and commit other cybercrimes like identity theft.
#1 – Amazon
- We’ve detected unusual activity on your Amazon.com account, and your account is locked for security reasons. Visit link below to recovery your account: <URL> Regards, Amazon Service
#2 – Paypal
- (paypal service : your account has been suspended, for more information visit> {URL} ~) id
Sample fake PayPal login pages:
- pypl-page[.]co
- authsecure[.]paypal[.]com[.]bitsaleshop[.]com
#3 – iCloud
- your request to unlock your iphone 13 is currently being processed. if this was not you, cancel: {URL} apple support
#4 – Citibank (email)
Surf the web safely with ease: Trend Micro ScamCheck
Trend Micro ScamCheck is a browser extension and mobile app for detecting scams, phishing attacks, malware, and dangerous links — and it’s FREE!
After you’ve pinned the ScamCheck extension, it will block dangerous sites automatically! (Available on Safari, Google Chrome, and Microsoft Edge).
You can also download the ScamCheck mobile app for 24/7 automatic scam and spam detection and filtering. (Available for Android and iOS).
Check out this page for more information on ScamCheck.
Gift Card
“Take the survey and get a $100 gift card!” Gift card scams are also common, circulating via text message and email all the time. Impersonating famous brands, scammers spread fake giveaway and lottery campaigns, luring you into clicking on phishing links and trying to trick you into revealing your sensitive data.
The attached links often take you to fake online survey pages that state you can claim a gift by filling out an online questionnaire. After you complete the questionnaire, you are prompted to enter credit card details before your “gift” can be delivered. Below are some examples:
#1 – Home Depot
#2 – Costco
#3 – T-Mobile
Of course, there will be NO gift card. Don’t get scammed!
Delivery Notifications
We’ve reported on delivery scams several times before. Posing as delivery companies, scammers send you fake delivery notifications and claim that you’ve missed your delivery and that you have to click on the attached link to update delivery information.
Again, the links are phishing links, taking you to fake login pages or online survey pages that are designed to collect all your credentials.
#1 – USPS
- [us post]- your delivery address is not detailed and the package cannot be delivered, please update the address information at: {URL}
- U.S.P.S – The package address is incorrect, please change or submit the correct address online. {URL}
Sample fake USPS URLs
- ups-tyiuijki[.]us
- uspunusualup[.]com
#2 – Walmart
- CID#: 5056701573 Confirmed Delivery, Tomorrow By 4:00pm https::<URL> Tracking ID # 2354828
#3 – FedEx (email)
“You have (1) package waiting for delivery.”
#4 – UPS (email)
Online Shopping Sales Promotions — Ray-Ban
Besides phishing links, scammers also spread links to malicious online shops — as we’ve reported several times. Please beware of fake emails that promote scam Ray-Ban sites:
The attached link will lead you to a fake Ray-Ban online shop. Be careful!
Sample URLs of fake Ray-Ban online shops:
- 90off-sunglasses[.]com
- 90off-rb[.]com
Note: ALWAYS pay close attention to the URLs of websites!
How to Protect Yourself
- Double-check the sender’s mobile number/email address.
- Free gifts and prizes are always a major red flag.
- Go to the official website/application instead of using links from unknown sources.
- Never click on links or attachments from unknown sources. Use Trend Micro ScamCheck to surf the web safely (it’s free!).
- Add an extra layer of protection to your devices with Trend Micro Maximum Security. Its Web Threat Protection, Ransomware Protection, Anti-phishing, and Anti-spam Protection can help you combat scams and cyberattacks. Click the button below to give it a try:
As ever, if you’ve found this article an interesting and/or helpful read, please do SHARE it with friends and family to help keep the online community secure and protected.