PayPal Login, Netflix, Truist, cPanel, Microsoft, Costco, & Ace Hardware — Top Phishing Scams of the Week
This week we’ve found a large number of scams that you need to watch out for, including ones relating to Costco, Ace Hardware, PayPal, Netflix, Truist, cPanel, and Microsoft. Would you have been able to spot all the scams?
Impersonating famous brands and companies, scammers send out fake text messages and emails containing phishing links and try to entice you into opening them with various lies.
These phishing links will often take you to fake login pages that will end up asking you for your personal information and/or login credentials. Scammers can thus gain control of your account — watch out! Below are some examples:
Fake Paypal Login Pages
This is not the first time that we’ve detected fake PayPal text messages. Scammers pretend that there are security issues with your account and prompt you to resolve them via the phishing link they provide:
- [ Paypal ]:Your account was restricted, Verify your account as soon as possible or your account will be locked. Click link below to verify your account {URL}
Below is a sample fake PayPal login page. Sometimes it can be really hard to differentiate the fake ones from the legitimate ones. Be careful!
Spot the Fake PayPal Login Pages — Trend Micro ScamCheck
Trend Micro ScamCheck is a browser extension and mobile app for detecting scams, phishing attacks, malware, and dangerous links — and it’s FREE!
After you’ve pinned the ScamCheck extension, it will block dangerous sites automatically! (Available on Safari, Google Chrome, and Microsoft Edge).
You can also download the ScamCheck mobile app for 24/7 automatic scam and spam detection and filtering. (Available for Android and iOS).
Check out this page for more information on ScamCheck.
Netflix Phishing
Netflix scams just never seem to stop. Again, using security issues as an excuse, scammers want you to click on the attached link to secure your Netflix account in 48 hours:
- [ Netflix ] Your Netflix account has been suspended, because we’re having some trouble with your current account information. Validate your account information by click link bellow: <URL> Please take action on your accont within 48 hours to avoid permanent suspension.
The attached link will take you to a fake Netflix login page. You should never enter any personal information here!
TRUIST Bank Phishing
Besides streaming services, scammers also love to pose as banks when exploiting people. This time they’re pretending to be Truist bank and sending out fake alert messages related to an “ongoing investigation”:
- truistalerts: ongoing investigation on a transaction made on your account, confirm here. {URL} #79rysq
The link will take you to a fake Truist login page:
cPanel Phishing Email
“Please confirm your account!” Scammers also impersonate mail service providers and web hosting software companies such as cPanel to send you bogus security notifications via email:
The “confirm” button will take you to a fake login page that will collect your email address and password. Don’t fall for it!
Fake Webmail login page
Real Webmail login page
Below is another sample fake email notification:
The button here leads to a fake Microsoft login page. Just remember, DON’T enter anything!
Online Survey Phishing Scams
These phishing links will often lead to online survey pages that state you can claim a gift by filling out an online questionnaire. Scammers can record the data you enter onto these pages and use it to commit crimes such as identity theft. Below are some common scams with examples.
Costco Survey Scam
We’ve written about Costco scams before, and they are now circulating via text messages again! Falsely claiming that you can win a Samsung TV, scammers want to lure you into clicking on the attached phishing link:
- Thank You! Costco Winner: 6144199799. Your 8k TV Samsung 85”” <URL>
The website the link leads to says that you can win a Samsung 85’’ QLED 8K UHD HDR Smart TV after you complete the survey:
After that, you will be asked to enter personal information, including even credit card details:
Of course, no TV will ever appear in the end and scammers can collect any credentials you submit on the phishing page. What for? Well, with your sensitive data, scammers can commit cybercrimes: e.g., hack into your accounts or steal your identity. Don’t let them!
Ace Hardware Survey Scam
A while ago we detected fake gift card emails impersonating Ace Hardware, and this week they are back.
Promising you an exclusive offer of $100, scammers urge you to click on the embedded button that leads to a scam survey page. Don’t submit any credentials!
How to Stay Safe from Scams
- Pay close attention to URLs — are they legitimate?
- Double-check the sender’s mobile number/email address.
- Free gifts and prizes are always a major red flag.
- Go to the official website/application instead of using links from unknown sources.
- Never click on links or attachments from unknown sources. Use Trend Micro ScamCheck to surf the web safely (it’s free!).
- Add an extra layer of protection to your devices with Trend Micro Maximum Security. Its Web Threat Protection, Ransomware Protection, Anti-phishing, and Anti-spam Protection can help you combat scams and cyberattacks. Click the button below to give it a try:
As ever, if you’ve found this article an interesting and/or helpful read, please do SHARE it with friends and family to help keep the online community secure and protected. Also, please consider clicking the LIKE button below.