Understanding Online Scams: A Simple Guide
Online scams are a persistent challenge in our digital world, designed to trick users of phones, tablets, and computers into giving away personal information or money. This guide is made especially simple for non-tech phone, iPad/tablet & computer users, focusing on practical ways to protect yourself. Full context on broader digital safety topics is available in other resources.
Recognizing Phishing Attempts
Phishing is a common tactic where scammers pretend to be a trustworthy entity, like a bank, a well-known company, or even a government agency, to trick you. They often send fake emails, text messages, or use websites that look legitimate.
-
Unexpected Messages: If you receive an email or text message that seems urgent, offers something too good to be true, or asks you to click a link to ‘verify’ your account, be suspicious. These messages often try to create a sense of panic or excitement so you act without thinking.
-
Checking the Sender: Always look closely at the sender’s email address or phone number. Scammers often use addresses that are slightly off, like ‘[email protected]’ instead of ‘[email protected]’. On a phone, hover your finger over a link (without tapping) to see the actual web address it leads to. On a computer, hover your mouse over the link. If it looks strange or doesn’t match the company’s official website, do not click it.
-
Spelling and Grammar Errors: Many phishing attempts contain obvious spelling mistakes or poor grammar. Legitimate organizations usually have professional communications. While not every mistake means a scam, it’s a significant red flag.
-
Generic Greetings: If an email addresses you as ‘Dear Customer’ instead of your actual name, it might be a scam. Real companies typically personalize their communications.
Dealing with Fake Technical Support Scams
Another common scam involves fake technical support. Scammers might call you directly, pretending to be from a well-known tech company, or a pop-up warning might appear on your screen telling you your device has a virus.
-
Unsolicited Contact: Legitimate tech companies generally won’t call you out of the blue to tell you about a problem with your computer or phone. If you receive such a call, it’s almost certainly a scam.
-
Pop-Up Warnings: If a pop-up appears on your screen with alarming messages about viruses and tells you to call a specific number, do not trust it. These are designed to scare you into calling them so they can gain remote access to your device or convince you to pay for unnecessary ‘fixes’. What often causes issues is users panicking and following these instructions.
-
Never Grant Remote Access: If someone you don’t know or trust asks to take control of your computer or phone remotely, refuse. Granting remote access can allow them to install malware, steal your data, or lock you out of your device.
-
Verify Independently: If you’re concerned your device has an issue, close the suspicious pop-up (often by pressing Alt+F4 on a computer or restarting your device) and then contact the legitimate company directly using a phone number from their official website, not one provided in the pop-up or by the caller.
Avoiding Online Shopping and Investment Scams
Scammers also create fake online stores or offer fraudulent investment opportunities.
-
Too Good to Be True Deals: If an online deal seems incredibly low-priced, it could be a scam. Be especially cautious with high-demand items or luxury goods offered at drastic discounts.
-
Unfamiliar Websites: Always check the website’s address. Look for ‘https://’ at the beginning of the address, which indicates a secure connection, and a padlock icon. Be wary of sites with unusual domain names or poor design.
-
Payment Methods: Scammers often insist on unusual payment methods, like wire transfers, gift cards, or cryptocurrency. These are difficult to trace and recover. Stick to secure payment methods like credit cards, which offer fraud protection.
-
Investment Promises: Be extremely skeptical of investment opportunities promising guaranteed high returns with little to no risk. These are classic signs of a ‘pump and dump’ or Ponzi scheme. When X applies, Y is common, especially when high returns are promised quickly.
General Safety Practices
Staying safe online also involves some basic habits:
-
Strong, Unique Passwords: Use different, complex passwords for all your online accounts. Consider using a password manager to help you keep track.
-
Two-Factor Authentication (2FA): Where available, enable 2FA. This adds an extra layer of security, often requiring a code from your phone in addition to your password.
-
Keep Software Updated: Regularly update your phone, tablet, and computer’s operating system and apps. Updates often include critical security fixes that protect against new threats.
-
Back Up Your Data: Regularly back up important files. If you ever fall victim to a ransomware attack, having a backup can save your data.
What to Do if You Suspect a Scam
If you suspect you’ve encountered a scam, stop all communication immediately. Do not click links, download attachments, or provide any personal information. Report the scam to the relevant authorities, such as your local consumer protection agency or the website/service that was impersonated.