Daily News Podcast
Daily Newsletters
116 3rd St SE
Cedar Rapids, Iowa 52401
CYBER SUNDAY: Be vigilant in spotting scams
Or, be careful what you click, who you pay
Criminals have been scamming people since the early days of the internet.
The "Nigerian Prince" reference often used as a punch line today was a serious issue for many in the ’90s and continues to exist in similar forms today. Chain mails, lottery scams and the always prevalent phishing attacks have been a staple on the internet for as long as we can remember.
For those who lived through the Nixon years, the famous saying from “Deep Throat” to "Follow the money" remains a piece of advice that can be applied in many different contexts.
In the world of cybersecurity, this advice is especially relevant, as cybercriminals are largely motivated by financial gain. By following the money, we can gain insight into the evolving tactics of cybercriminals and better understand what we need to do to protect ourselves.
Fake accounts, apps
As technology has evolved, so have the tricks, tactics and platforms used by scammers.
Social media platforms are an increasingly popular target with a "friend-in-need" scam, where hackers create fake social media accounts and pose as friends in urgent need of money. They may claim to be stranded in a foreign country or in trouble with the law.
Mobile app scams have found new ways to defraud users by creating fake apps that are very similar to popular apps.
These fake apps often contain malware that is positioned to collect data from your device in an effort to steal personal information. This information then can be used to perform other attacks with the knowledge of your contacts or data taken from your device.
Online marketplaces, such as Facebook, Craigslist and eBay, are popular targets for scammers. The "overpayment" scam, where a scammer offers to buy an item for a higher price than advertised and then sends a fake check or money order, is a common scenario. The scammer then asks for a refund on the “overpayment” they never sent.
Tips to avoid scams
While I could go on with the numerous ways scammers are perfecting their trade, I thought it would be useful to provide some quick reminders on how to avoid some of these pitfalls.
- Stick with reputable websites. When receiving an email, text or unsolicited digital notification, make sure you understand what website the "call to action" is sending you to. If you are not sure about a site, do some research before entering any payments.
- Don't wire money, obtain gift cards or send cash. If you are buying something online, never agree to these payment methods. Scammers use these because they are difficult to trace and can't be reversed.
- Don't be rushed. Online scammers use high-pressure tactics to get people to make quick decisions or to act impulsively. If someone is pressuring you to make a purchase or provide personal information, stop and do research or make inquiries before proceeding.
- Verify identities. If you get a request from someone you know that they are in trouble and need your help through social media chat or through texting, find a way to verify their identity. Call the person you think you are chatting with to verify they are traveling or out of the country. Make sure they haven't been hacked and that they really are in need.
By understanding patterns and motivations of attackers, we can take steps in protecting ourselves and our loved ones from these vicious attacks. Remain vigilant and watch for signs of suspicious activity.
Paul Nus is the director of technology at Folience, The Gazette’s parent company, and a board member of SecMidwest, a Cedar Rapids-based not-for-profit focused on cybersecurity education; SecMidwest.org. Comments: paul@folience.com
Paul Nus, Folience
