Tag Archives: email fraud

Online Holiday Shopping 2016 – Security Basics

canstockphoto31830688Twice a year scammers crawl from underneath rocks and other nasty places to celebrate special holidays. First, tax season, then the holiday season. African-Americans using the Internet for holiday shopping need to be on guard against cyber crime.  Being aware of the scams and hazards can make a big difference in your holiday celebrations. 

The African-American Cyber Report is offering black people another season of valuable safety information to protect your holiday season so lets get started.

 

Card Skimming

Card skimmer courtesy of BBB.org

Card skimmer courtesy of BBB.org

Card skimming is actually pretty simple. Your credit or debit card information is copied when you swipe your card at a retailer or ATM. Cyber thieves install almost invisible devices or special software on retail card readers. This allows them to duplicate your card and steal your PIN. Its as simple as that. So how do you protect yourself?

First of all if something does not look or feel right stay way. For example is the face of the card reader loose or does it look kind of sloppy? Exposed glue or loose fitting parts? Do the buttons require more effort than normal to press? Does your card have to be swiped several times to work properly. Here’s a trick; pull or tug at the face of the reader. It may come off in your hand. Do the same at ATM’s. Check those buttons. Try to move them or lift the key pad. Check the card insert. Pull on that. Check to see if there is something in the slot or protruding from it. You have got to be alert! If you find any of these things notify the retailer and your bank if you have used it.

If possible use your credit card and not your debit card. It is extremely hard to get your money back from a bank debit card. But a credit card transaction can be cancelled and you will normally not be charged. Skimmers can be found anywhere even at Walmart.

RFID Card Protection

paypassThis is less likely but does happen. Your credit and debit card are sometimes equipped with a feature allowing you to charge things with a quick tap of the card on the pay terminal. You may have one of the cards with brands like PayPassExpressPay, or PayWave.

These cards have RFID (radio frequency identification) chips. With the right equipment criminals can scan your card and steal your card’s data. Protect your card by using a RFID blocking sleeve, or an RFID wallet available online at retailers like Amazon.

But as we said before this is not likely. An RFID reader has poor range so the scammer would have to be standing awfully close to read your card. Keep that in mind when you are fighting that crowd on Black Friday. 

 

EMV or Chip Cards Safety

chipcardYou should by now have the credit card with the EMV chip embedded in it. If not contact your bank or card provider and ask for it. That chip is used to encrypt the transaction data when you charge something. 

The objective of card chip was to reduce card fraud. This technology is not perfect. Some retailers have failed to switch to EMV even though the deadline passed in 2015.  Why? Retailers and customers complain that the process is too slow. Chip cards have reduced point-of-sale fraud. But the crooks have worked around it. The latest hazard is fraudulent “card-not-present” transactions online. Criminals can obtain the credit card number, security code, expiration date from criminal websites that sell this information. Personal information like your dog’s name or your mother’s birthday can be found on Facebook. They use this information to hijack your online accounts. That’s what happens when you put too much of your business online.

 

Tech Support Scams


tech-support-scam-popupNew tablets, laptops, smartphones and big screen televisions are big sellers on Black Friday. Tech support scams are common all year round but the efforts by scammers increases during the holidays. 

These scammers are intent on getting you to pay for support or software you don’t need or simply doesn’t exist. This includes extended warranties. They email you with a sales pitch or issue warnings from what appears to be a Microsoft representative. Be aware! Anti-virus companies do not call you to let you know you have a computer virus. Don’t ever agree to let anyone access your computer from a remote location. Don’t download any software online that you are not sure of. If you don’t have the expertise to know then consult a professional.

Computers often come with a ton of useless software or games. This is known as bloatware or crapware. Be careful! These programs can cost you money. They often entice children and adults to buy things without them even realizing it.

 

Phony Bank Calls

During the holiday season you are using your bank and debit cards more often. Beware if someone claiming to be your bank or credit card company calls you. Remember when it comes to your money you should be asking the questions.

Scammers will call victims claiming to be investigating card fraud or suspicious activity. They will ask questions that reveal your personal information like your credit card number or PIN. Don’t answer these questions. Hang up and call your bank from a number you know. Or stop by in person. These scammers are professionals at alarming you and getting you to reveal information used to rip you off.  When it comes to your money only deal with people you know and trust. Never, ever reveal any personal information to a voice over the phone.

 

Email and Phishing Scams

Image courtesy of David Castillo Dominici, freedigitalphotos.net

Image courtesy of David Castillo Dominici, freedigitalphotos.net

Be careful where you click! Be extremely cautious about clicking on or downloading coupons in your email. It may be ransomware. This is a malicious software program that locks up your computer until you pay to get it released. It happens a lot and is one of the hottest computer scams going on right now.

Clicking on the wrong email may release malware on to your computer that steals information, monitors your activity and changes your settings. It may even secretly take control of your computer and email itself to all your contacts. Understand that scammers can duplicate an email from Macy’s, Walmart and any other major retailer. Check the return email address to make sure you know who its from. Check the retailers website for information regarding sales, coupons and possible scams. 

Be careful about holiday contests. When you fill out a contest form you maybe giving out personal information. Same for holiday coupons that ask for your name, email address and other personal information.

This holiday season; Be Alert! Be Aware!

 

 

 

Reacting to Online Fraud

You want to see a black person mad? Have them pay for something and not get what they paid for. Fraud is a reality whenever you shop online. And nothing is more frustrating than not knowing who to call when you discover you have been ripped off.

According to the  FBI’s Internet Crime Complaint Center or IC3 there were 262,813 complaints of Internet crime filed with the agency last year alone. Of that number 119, 457 or 45% reported actual financial losses. So how much money was lost to online fraud in 2013? How about $781,841,611! Yeah; I used an exact number because you need to see exactly how much money the criminals are raking in. The average victim lost $2,975  to online fraud. Again, exact numbers. You can see all the stats in the IC3 2013 Internet Crime Report.

Imagine how much larger those numbers would be if all the crime was actually reported. It is believed that as much as 15% of online fraud is never reported because the victims are just too embarrassed. 

Shopping or conducting business online is fairly secure if you take the right precautions. But what if you lose money to a fraud or scam? Who do you report it to? First let me say this; if you call your local police they may be woefully untrained on how to handle a cyber crime. Its not their fault. Investigating cyber crime is a specialized task that is beyond their pay grade. If you got ripped off by a fake charity that comes to your door they may be able to help. But a cyber crime that may originate half a world away is just out of their league.

One of the most common scams that strike people online is the phishing attack.  A phishing scam is when a cyber criminal tries to trick you into revealing potentially valuable information. The same information that was stolen from JP Morgan.

The criminal will create an email that is a near perfect duplicate of an email from your bank or other trusted source. The email may warn you about a potential security incident then provide you a link to click on for further information,  or to go to the website or a security patch or something like that.

If you click on the link one of two things are going to happen. You may be taken to a duplicate website and asked for your user name and password. Or you may download some form of malware that could steal valuable information. Most banks and other financial institutions do not communicate this way. My advice is never, ever click on a link you are not absolutely certain of what it is.  But if you do…

1) Forward the phishing email and link along to the company being imitated. If they impersonated your bank or other financial service provider make sure you let the bank know and forward the email to them as well.

2) Contact your local law enforcement and at least complete a police report. Also report the incident to the Internet Crime Complaint Center or IC3.

3) Remember that a paper trail is your best friend. Your bank or credit card company keeps excellent records. You should too. Keep a record of all the calls  you make and to whom you spoke with, your statements with the suspicious transactions and any other correspondence or documentation required.  If enough people report this scam it could trigger a community alert. Inform a government consumer protection agency or relevant tech firm.    

4) Delete the message once you’ve done all this and add the email address to your spam folder so you never have to see it again.

Most legitimate online shopping sites will offer a way for customers to dispute a sale or charge or report fraud of any kind.

For example if you get caught up in PayPal themed phishing campaign you will need to contact PayPal’s fraud department.  Do a simple web search for PayPal Phishing or PayPal Fraud. Remember that these cyber criminals can craft an absolutely flawless copy of a PayPal site or email so don’t click on or respond to anything suspicious. Once you are in touch with the real PayPal they will tell you exactly what to do. Nearly every bank and online merchant will have a procedure to report phishing and fraud. Use it. And the next question is; if they don’t why are you doing business with them?

I shop online regularly. And I worry about what happens if I don’t receive what I ordered. This rarely happens. But what if it did?

Disputing charges or an order is a skill you have to master if you shop online. You have to learn who and how to report it. How to return it and if necessary how to get your money back? Or what if you are overcharged? You need to learn how to dispute and get the correct product or money back.  Here are some effective steps for dealing with disputed or fraudulent transactions.

1) Contact the organization where the charges are coming from. Most legitimate organizations  have a fast and efficient system to help the customer. They want to correct the situation as soon as possible. And they will. These merchants will provide return shipping and refunds if the order or the price is not right. I have even returned items and got a coupon for the next time I shop on their site. They want your business.

2) But if that’s not the case or doesn’t solve your problem, contact your bank or credit card provider. You may be able to block the charges or even get your money back. Some credit card issuers and banks have fraud protections for their card holders. Merchants take notice when the bank or a credit card company calls. They don’t want that kind of trouble.

3) You may need to contact law enforcement or the Better Business Bureau or the IC3. Don’t hesitate if you think you’ve been ripped off. And don’t be afraid to take to social media and let them have it! You’ll be surprised what happens if you send out a Tweet.

Sites like eBay and Amazon are market providers. They simply create the online site where people sell directly to each other. There are many sites that specialize in providing a marketplace for buyer and sellers. Some online marketplaces carry very specific or unique products and others carry just about everything like Craigslist. A very dangerous place if you don’t know what you’re doing and how to protect yourself.  Now eBay and Amazon and many other online marketplaces are very diligent at protecting their customers and their reputations. But using these sites means you have to protect yourself.  Learn how they fight fraud before you get involved with them. eBay has an excellent system in place to judge the sellers on their site and are very responsive to complaints. Same for Amazon. Learn how to use their systems. But if something does happen you’ll need to follow their specific instructions for handling fraudulent sellers. Amazon and eBay are definitely ready to fight fraud with you and for you. 

Remember there are ways to fight online fraud. You have to educate yourself to spot it before it happens and how to react when it does happen. There is no software that is going to do the job for you.

Now you know