Don’t Get Hooked! Phishing Scams Exposed

We’ve all gotten the emails, phone calls, or even text messages that make us pause and ask, “Is this real or fake?” Sometimes we can easily identify the phishing scam, but sometimes it’s not so easy. 

Recently there has been more and more text message based phishing scams using real contact names or posing as companies like the USPS.

Some recent text or emails we have seen include:

1. The Package Scam:“*USPS Attention Needed: Update Your Shipping Information*

Hi there! We’re reaching out to make sure your delivery makes it to you without a hitch. To do this, we need you to update your shipping details as soon as possible. Please click this link to verify your information: ___Curious about where your delivery is right now? You can see its current location on Google Maps: ___ We appreciate your cooperation and quick action on this matter. Thanks for helping us get this to you smoothly!

This one has been popping up with all kinds of variations, but with the same message. Most of the time, especially when a lot of people are ordering gifts for the holidays, we may actually have a package on the way. That can make this scam easier to fall for. Even with those things considered, there are some key ways you can tell this is a scam. They are creating a false sense of urgency by using words like, “as soon as possible.” Scammers always want to rush you into falling for the scam. Notice the links as well. Phishing scams often lead you to click on unusual links. You also can notice that the greeting is generic and doesn’t include any personal identification. If you had a package on the way, they would certainly know your name. Lastly, notice they are trying to gather information from you. This is normally the goal of most scams. They are looking for you to give them as much information as you are willing to give. In this situation, once you click the links, they will ask for information and then use it for further scams or stealing financial information for their own personal gain. 

Sometimes these scams are more generic. Have you ever received the following:

2. Hello?

“Hello, how are you doing today?” from a contact you have never seen before. 

These phishing messages or hoping that you will start the conversation with them even though you don’t have their contact saved. It is normal to want to respond to these messages just in case it someone we know, but they will try to gather information like your name, address, or whatever else they can trick you into sharing. Notice some of the same features as the last scam? The generic greeting is the biggest red flag. If someone new just got your contact information, they will normally use your name. They also would normally share their name as well. Be careful not to engage with these random strangers. 

What do I do if I still don’t know?

Do research. 

Many people make helpful articles once new scams come out. You also can ask ChatGPT what it thinks about the message if you can’t find any information about the specific message you received. Lastly, ask an expert. Cybersecurity is a huge field right now, and it is more than likely you have a friend, or even a child who has taken some cybersecurity courses. Our cybersecurity courses start as early as middle school, so don’t assume they don’t already have the skills to help you identify these scams.