PayPal Login, Netflix, Truist, cPanel, Microsoft, Costco, & Ace Hardware — Top Phishing Scams of the Week

    Fake Paypal Login Pages
    iStock

    This week we’ve found a large number of scams that you need to watch out for, including ones relating to Costco, Ace Hardware, PayPal, Netflix, Truist, cPanel, and Microsoft. Would you have been able to spot all the scams?

    Impersonating famous brands and companies, scammers send out fake text messages and emails containing phishing links and try to entice you into opening them with various lies.

    These phishing links will often take you to fake login pages that will end up asking you for your personal information and/or login credentials. Scammers can thus gain control of your account — watch out! Below are some examples:

    Fake Paypal Login Pages

    This is not the first time that we’ve detected fake PayPal text messages. Scammers pretend that there are security issues with your account and prompt you to resolve them via the phishing link they provide:

    • [ Paypal ]:Your account was restricted, Verify your account as soon as possible or your account will be locked. Click link below to verify your account {URL}

    Below is a sample fake PayPal login page. Sometimes it can be really hard to differentiate the fake ones from the legitimate ones. Be careful!

    Spot the Scam_PayPal_Phishing Login Page_20221021
    Sample fake PayPal login page

    Spot the Fake PayPal Login Pages — Trend Micro ScamCheck 

    Trend Micro ScamCheck is a browser extension and mobile app for detecting scams, phishing attacks, malware, and dangerous links — and it’s FREE!

    After you’ve pinned the ScamCheck extension, it will block dangerous sites automatically! (Available on Safari, Google Chrome, and Microsoft Edge).

    TMC_CTA_Extension_2022

    You can also download the ScamCheck mobile app for 24/7 automatic scam and spam detection and filtering. (Available for Android and iOS).

    TMC_CTA_Mobile_2022

    Check out this page for more information on ScamCheck.

    Netflix Phishing

    Netflix scams just never seem to stop. Again, using security issues as an excuse, scammers want you to click on the attached link to secure your Netflix account in 48 hours:

    • [ Netflix ]    Your Netflix account has been suspended, because we’re having some trouble with your current account information.  Validate your account information by click link bellow:   <URL>    Please take action on your accont within 48 hours to avoid permanent suspension.

    The attached link will take you to a fake Netflix login page. You should never enter any personal information here!

    Spot the Scam_Netflix Scam_Phishing Login Page_20221021

    TRUIST Bank Phishing​

    Besides streaming services, scammers also love to pose as banks when exploiting people. This time they’re pretending to be Truist bank and sending out fake alert messages related to an “ongoing investigation”:

    • truistalerts: ongoing investigation on a transaction made on your account, confirm here. {URL} #79rysq

    The link will take you to a fake Truist login page:

    Spot the Scam_Truist Bank_Phishing Login Page_20221021

    cPanel Phishing Email

    “Please confirm your account!” Scammers also impersonate mail service providers and web hosting software companies such as cPanel to send you bogus security notifications via email:

    Spot the Scam_cPanel_Phishing Scam Email_20221021

    The “confirm” button will take you to a fake login page that will collect your email address and password. Don’t fall for it!

    Fake Webmail login page

    Spot the Scam_cPanel_Webmail FAKE Login Page_20221021

    Real Webmail login page

    Spot the Scam_cPanel_Webmail REAL Login Page_20221021

    Below is another sample fake email notification:

    Spot the Scam_cPanel_Phishing Scam Email_20221021

    The button here leads to a fake Microsoft login page. Just remember, DON’T enter anything!

    Spot the Scam_Security Alert Email_Fake Microsoft Login Page_20221021

    Online Survey Phishing Scams

    These phishing links will often lead to online survey pages that state you can claim a gift by filling out an online questionnaire. Scammers can record the data you enter onto these pages and use it to commit crimes such as identity theft. Below are some common scams with examples.

    Costco Survey Scam

    We’ve written about Costco scams before, and they are now circulating via text messages again! Falsely claiming that you can win a Samsung TV, scammers want to lure you into clicking on the attached phishing link:

    • Thank You! Costco   Winner:  6144199799.  Your 8k TV Samsung 85”” <URL>

    The website the link leads to says that you can win a Samsung 85’’ QLED 8K UHD HDR Smart TV after you complete the survey:

    Spot the Scam_Costco Scam_Suvery Phishing Scam_20221021

    After that, you will be asked to enter personal information, including even credit card details:

    Spot the Scam_Costco Scam_Suvery Phishing Scam_20221021_2

    Of course, no TV will ever appear in the end and scammers can collect any credentials you submit on the phishing page. What for? Well, with your sensitive data, scammers can commit cybercrimes: e.g., hack into your accounts or steal your identity. Don’t let them!

    Ace Hardware Survey Scam

    A while ago we detected fake gift card emails impersonating Ace Hardware, and this week they are back.

    Spot the Scam_Ace Hardware_Suvery Phishing Scam Email_20221021

    Promising you an exclusive offer of $100, scammers urge you to click on the embedded button that leads to a scam survey page. Don’t submit any credentials!

    Spot the Scam_Ace Hardware_Suvery Phishing Page_20221021

    How to Stay Safe from Scams

    • Pay close attention to URLs — are they legitimate?
    • Double-check the sender’s mobile number/email address.
    • Free gifts and prizes are always a major red flag.
    • Go to the official website/application instead of using links from unknown sources.
    • Never click on links or attachments from unknown sources. Use Trend Micro ScamCheck to surf the web safely (it’s free!).
    • Add an extra layer of protection to your devices with Trend Micro Maximum Security. Its Web Threat Protection, Ransomware Protection, Anti-phishing, and Anti-spam Protection can help you combat scams and cyberattacks. Click the button below to give it a try:

    As ever, if you’ve found this article an interesting and/or helpful read, please do SHARE it with friends and family to help keep the online community secure and protected. Also, please consider clicking the LIKE button below.

    Post a comment

    Your email address won't be shown publicly.

    0 Comments

      This website uses cookies for website functionality, traffic analytics, personalization, social media functionality and advertising. Our Cookie Notice provides more information and explains how to amend your cookie settings.