This week we’ve found phishing attempts in which scammers are exploiting people under the pretenses of crypto airdrops, pending messages, free gifts, and security alerts. Would you have been able to spot these scams? 

Phishing Scams

Impersonating trusted brands, and under many disguises, scammers send out texts and emails containing links that take you to phishing pages. They make up various excuses to trick you into clicking on the links, with their goal being to steal your PII, such as your Social Security number, login credentials, or credit card details. They can thus take control of your account, your money, as well as your identity. Below are some examples:

Fake Crypto Airdrop Email

We often detect scam emails that say you can join crypto airdrops. However, the emails lead to fake websites designed to steal your crypto assets.

For example, we blocked this fake XRP airdrop email 367 times last week:

If you were to click on the button to claim the airdrop, you would be led to a fake website that collects your login credentials and all your crypto. Don’t get scammed!

Note: Don’t use the link in the email. Always go to the official website!

Protect Yourself from Scams

The truth is, there are lots of scams and scam sites on the internet and they’re getting even more difficult to detect with common sense alone. However, for an easy and reliable method of detecting and avoiding scam sites, check out Trend Micro ID Protection.         
 
ID Protection can shield you from scams, fake and malware-infected websites, dangerous emails, phishing links, and lots more! If you come across something dangerous online, you’ll be alerted in real time so you’ll know to stay well clear.        

cPanel Phishing Email

“There are 5 new messages sent to you!” Did you receive notifications like this that prompt you to check your email account to review the “pending messages”? Be careful. The email might be a scam! We blocked this fake cPanel email 342 times last week:

If you proceed with the email and click on the attached link, you will be taken to a fake login page where you may end up revealing all your login credentials. Don’t let that happen!

Fake Holiday Gift Email

“Receive a 50% Discount on a brand new ‘hiking stick’!” The deal sounds a bit too good to be true, right? Well, it is! We detected this fake email promoting a holiday discount 7,342 times last week. Did you receive it?

If you take the bait and click on the button, chances are you will end up on a fake online form that, again, asks for your PII, including your credit card details. Be careful!

Text Scams

Besides emails, we also detected lots of scam text messages containing phishing links. Scammers create many bogus excuses to urge you to click on the links, for example:

#1 Fake Alert

Falsely claiming that you need to take immediate action to secure your device or its data, scammers try to lead you to phishing pages:

• Last Warning: Your files are scheduled for deletion in 00 hours. Take immediate action to protect them: <URL> (Detected 4,322 times by Trend Micro last week)
• Final Call: Your files will be removed from our system soon. Protect them now: <URL> (Detected 3,527 times by Trend Micro last week)
• Secure your information! Erase these two malicious apps WITHOUT DELAY: <URL> (Detected 2,675 times by Trend Micro last week)

#2 Non-existent Subsidy/Assistance

Scammers also prey on those who would benefit from receiving financial assistance from the government:

• Hi! Its <NAME>. According to our records you might still have a 0000$ Subsidy Card ready for redemption <URL> (Detected 1,611 times by Trend Micro last week)
• APPROVED FOR FOOD AID: You’re entitled to <MONEY> each month in food assistance. Remember to update your details by the 00st of <MONTH>. <URL>. (Detected 908 times by Trend Micro last week)

No matter which tactics scammers use, as mentioned several times, all they want is to get you to reveal all your PII via malicious links/websites. Watch out!

Tips to Stay Safe Online

• Double-check the sender’s mobile number and email address. Even if it seems legitimate, think twice before you take any action.    
• Reach out to the company’s customer service directly for help and support.
• Never click on dubious links or attachments! Stick to official websites and apps.
• If you’ve accidentally revealed your PII somewhere, change your passwords immediately and inform your bank and/or other companies that scammers may contact them pretending to be you. 
• Check if any of your PII has been leaked and secure your social media accounts using Trend Micro ID Protection.   
• Finally, add an extra layer of protection to your devices with Trend Micro Mobile Security. Its Web Threat Protection, Ransomware Protection, Anti-phishing, and Anti-spam Protection will help you combat scams and cyberattacks.  

If you’ve found this article an interesting and/or helpful read, please SHARE it with friends and family to help keep the online community secure and protected. Also, please consider leaving a comment or LIKE below.