• 888-966-4827
Menu

Category Archives:
Email Scams

Home / Blog / Email Scams
Alert Fatigue Got You Hitting Snooze?

Alert Fatigue Got You Hitting Snooze?

Bzzzzzzz. Bzzzzzzzzzz. Bzzzzzzzzzzzzz. Before you even open your eyes in the morning, your phone is vibrating nonstop. Is it your mom asking you if you made it home okay from your trip? Your car reminding you that you forgot to lock her doors before making your way to bed? Your building manager telling you they’re spraying for insects this morning?

Another buzz. And then another. Geezles! You feel guilty, but not enough to feel bad turning your phone off completely. You took work off this morning to actually sleep in. Jet lag stinks!

Ends up that all of those buzzes weren’t from family, your landlord or co-workers needing a lift. (Your car was legitimate though making sure you both were safe and sound … she’s so sweet).

While you snoozed, you continued to receive a series of urgent security alerts. A breach notification. A password reset request. A text from your bank. Unreal! The coffee hasn’t even had a chance to start brewing yet! Fatigue sets in.

In 2025 data breaches and scams are at record highs:

– IT Pro reported that credential theft has surged 160% this year.

– Identity-related breaches now make up 1 in 5 incidents.

– Each case of suspected identity fraud can take hours (most of which during business hours) and sometimes days and weeks to properly investigate and resolve. Federal Trade Commission survey data estimates that victims of identity theft spent on average 30 hours resolving related problems with more severe cases jumping to around 60 hours or more.

That means more alerts than ever are landing in your inbox or on your phone. Some are indeed legitimate. Your bank warning asking about the legitimacy of a transaction…legitimate. A credit card alert asking if you are in Jamaica buying lottery tickets … certainly a questionable transaction. Another website breach alert for a company you don’t recall doing business with … who knows? After a while, all of the buzzes, dings, alerts start to blur together. Which alerts are real? Which ones are scams? And what happens if you miss something important?

With so much noise going on it’s no surprise that many people are feeling overwhelmed and unsure of what to do next and that’s why scammers have started to take advantage of this new phenomenon known as Alert Fatigue.

Why Alert Fatigue is Dangerous:

– It causes stress and creates opportunities for criminals when consumers potentially ignore real alerts because they just sound like another false alarm.

– It causes clicks on fake alerts that look legitimate, opening the door to old-fashioned fraud.

– It causes a feeling of “there’s no way I can keep up with all of this monitoring.”

Those feelings and actions are exactly what scammers want. The more confused and exhausted you are by alerts, the easier it is for them to sneak through the phishing attacks, fake jury duty scams, or fraudulent credit applications.

The Good News:

Moving from chaos to confidence is easy. You don’t have to face the fatigue alone. At Guard Well Identity Theft Solutions, our mission is to bring clarity, confidence and resolution when all of these identity theft threats strike.

– We help you understand which alerts require action with personalized guidance.

– If your identity is compromised, we don’t just notify you. Our team in Member Services works on your behalf to resolve the fraud completely and restore your identity.

– Instead of drowning in alerts, you gain a trusted partner who knows how to navigate the system and get results. With Guard Well you’re never left guessing.

Here are a few practical tips to stay safer:

Pause before reacting. Never click a link or call a number from an unexpected alert. Verify first through your bank or provider’s official website.

Enable two-factor authentication. Even if your password is stolen, this adds another layer of protection.

Use a password manager system. Strong, unique passwords across accounts reduce the chance that one stolen password will lead to multiple breaches.

Report suspicious alerts. Forward phishing emails or texts to the proper authorities instead of ignoring them. Phishing emails came be forwarded to the Federal Trade Commission at [email protected], the Anti-phishing Working Group at [email protected], and directly to your email provider by utilizing the ‘report phishing’ option. Remember to not click on any links or download attachments before forwarding. Take a screenshot if you need to document it for your records and delete the phishing email or text after reporting.

Guard Well Identity Theft Solutions exists to protect you, your family and your employees from the damages of identity theft. Please don’t hesitate to reach out if you need help or have any questions or concerns. We are available to you 24/7/365 at 888.966.4827 (GUARD) and [email protected].

Smart Home, Dumb Security? The Truth About IoT Devices

Smart Home, Dumb Security? The Truth About IoT Devices

Somewhere between switching your coffee to half-caf and trying to figure out TikTok, you may have dipped a toe or entire foot into the smart home world. Think Ring doorbell, Nest thermostat, Google Home and your smart TV for a start. Apartment or house, size doesn’t really matter. Hackers don’t discriminate against your 850 sq ft new digs or 12,000 sq ft whopping investment money pit … they just want in!

Welcome to the future. Today we can tell your house to turn on the lights, lower the thermostat, play smooth jazz and spy on your pets all without lifting a finger. Yes, these wonderful Internet of Things (IoT) devices are super convenient, but IoTs aren’t always built with strong security in mind. If a device doesn’t have good protection, it can be hacked. Some guy halfway across the globe could use your Wi-Fi to check out your emails and get details on your bank accounts. They could peek in through your security camera, listen (and talk …creepy!) through your baby monitor or just keep it mildly annoying and slow down your internet with junk traffic or turn your home into a sauna.

Maybe your teen gave you an Alexa because they were tired of you yelling, “Hey Google, turn up the volume” at your bluetooth speaker. However you got to the land of smartness, your gadgets might be clever but your security settings may be stuck in 2005. So how do we prevent the midlife crisis your Wi-Fi didn’t ask for?

“Admin” is not a password … it’s an invitation. If your smart speaker, router or security cam is still set to the factory default, you’re officially easier to hack. Choose a password that you need to write down. And I’m not talking about ones that are easy to remember like “ILoveMyCat123.”

Educate yourself on all aspects of smart home technology. Your smart plug doesn’t need your location and microphone access.

– Different devices on a shared network all need different passwords. Huge tip: use your guest Wi-Fi for all of your smart devices.

Don’t buy off-brands with three reviews. Just because ElectroZing sounds like something fun out of The Jetsons, that new toaster oven can wreak havoc on your life.

– If your fridge has Wi-Fi, a touchscreen and your social security number, it might be time to re-evaluate. That almond milk that is getting low may cost you the depletion of your bank account. Just because your new condo comes with one that can connect to the internet doesn’t mean that it has to!

Keep your devices updated. They have trust issues, too.

– If you ever see a message like “Unknown device connected to your network” … immediately take action!

Yeah, smart tech is awesome but if it’s not protected, it can cause more problems than it solves. Be smart about your smart stuff! Guard Well Identity Theft Solutions exists to provide you, your family and your employees from the damages of identity theft. If you have any questions or concerns, please contact our Member Services team immediately. We are always available for you 24/7/365 at 888.966.4827 (GUARD).

 

Gamers Hit with Social Engineering Attack

Gamers Hit with Social Engineering Attack

Our security teams have recently discovered that Shadow.tech, a cloud computing service developed by the French company Blade and later acquired by OBHcloud founder Octave Klaba in 2021 has been breached. Its technology is based on Window 10 server executing video games or other Windows software applications remotely. The breach origin date is October, 2023 and involves the data of 545,013 account users including their email addresses, full names, physical addresses and birth dates.

The public acknowledgement of the company states that they were a victim of a social engineering attack targeting one of their employees. Shadow.tech CEO said, “This highly sophisticated attack began on the Discord platform with the downloading of malware under cover of a game on the Steam platform, proposed by an acquaintance of an employee, himself, a victim of the same attack.” Learn More

If the term ‘social engineering attack’ is new to you … you are not alone.

Social engineering is a type of cyberattack that uses psychology to obtain personal identifying information (PII). It is impossible to prevent. This type of attack is a huge threat to cybersecurity because it begins on a very personal level with each victim. It invokes fear. It invokes urgency. If the device is being used for gaming and is part of a corporate network, login credentials can be compromised and harming of the network can occur.

Social engineering attacks can include many different formats: whaling, honeytrapping, tailgating … If you or a family member are into the gaming industry specifically, these are four social engineering attacks you need to be on the lookout for:

– Phishing: fraud, impersonation and old-fashioned blackmail.

– Baiting: fraudsters use fake websites, such as for not legit gaming add-ons and so-called “freebies.”

– Pretexting: this is a newer term and format. It includes a fabricated identity (or situation) where a victim may need to divulge PII. Example types of of impersonation could be a talent agency, a law enforcement officer, a major sweepstakes company.

– Spear Phishing: this is a very targeted email attack on specific employees (or sometimes organizations as a whole).

Tips:

– Only click on URLs that begin with https.

– Enable multi-factor authentication when available.

– Use a spam filter.

– Use a pop-up blocker.

– Do your research and check if a website or contact is legit.

– Never insert a USB into your device unless you know and trust exactly who it is from.

– If a request comes in and is marked URGENT, that is a red flag that it could be a scam.

Learning and following best cybersecurity practices are essential to safeguarding your PII. Guard Well Identity Theft Solutions exists to provide you, your family and your employees from the damages of identity theft. Please don’t hesitate to reach out if you need help or have any questions or concerns. We are available for you 24/7/365 at 888.966.4827 (GUARD) and [email protected].

Image courtesy credit: bermix-studio-wJ7atxTNeQE via unsplash.com

Financial Tips for 2024 Grads

Financial Tips for 2024 Grads

It’s that exciting time of year! Cap and gowns are coming in and Pomp and Circumstance is running through your head as you prepare for the big event. If you’re a parent of a soon-to-be high school graduate, dollar signs may be running through your head as well, along with advice … and lots of it!

If you’re a grad, get ready to hear life experience stories from your graduation speaker and many others. The Federal Trade Commission (FTC) has some advice for you as well. Learn how to recognize financial scams. Younger people report losing money to fraud more often than older generations. According to Colleen Tressler, Consumer Education Specialist, FTC, 43% of those who reported fraud were in their 20s, while only 15% were in their 70s. During the first six months of 2023, social media was the point of contact in 38% of fraud losses for people in their 20s. For those 18-19 years old, the figure was 47%.

What can you do to help avoid financial fraud?

Never give out money or any personal identifying information (PII) in response to an unexpected request. Be wary of texts, phone calls and emails. Scammers commonly pretend to be someone you trust.

Do your research. Be smart with your online searches and use terms like “complaint,” “scam” or “alert” along with the company name when you search.

Understand that there’s no such thing as truthful caller ID anymore.

Don’t wire money. Government and legitimate companies will not require you to pay for products or services with a re-loadable gift card. Even using cards like iTunes and Google Play are risky.

Recognize that robocalls are illegal and should be reported to the FTC. If you mistakenly answer one of these calls, hang up immediately.

Looking for a job after graduation can be quite stressful especially if you’re supporting yourself for the first time.

Check out job placement firms closely. These companies should not be charging high fees in advance for any type of service without a guarantee of placement.

Keep in mind that the promise of a job isn’t the same thing as job. If you have to pay for that promise, it’s likely a scam. Read More

Realize that there are many fake jobs listed on social media. Google the company name and visit their website along with the search term “career.” If jobs are not listed on their website and nothing comes up on Google, those are red flags.

Don’t give out any credit or bank account information over the phone to a company unless they have hired you and have agreed to pay you something.

Get job details in writing and take time to go over the small print. A legitimate company won’t pressure you into making an on-the-spot decision regarding your career.

CNN recently reported some smart money moves for graduates, such as aiming to live within your means and knowing what your means actually are. Check out their tips HERE.

Congratulations and make sure you enjoy your special day. We wish you the best of luck in your future endeavors!

For more information, visit https://www.consumer.ftc.gov.

Photo courtesy Jonathon Daniels via unsplash.com.

Consumer Fraud Losses Top $10 Billion

The Federal Trade Commission (FTC) recently released data showing that consumers reported losing more than $10 billion to fraud in 2023. This marks a 14% increase over reported losses in 2022. Fraud data came from 2.6 million consumers last year, nearly the same as 2022. Consumers reported to the FTC that they lost more money to investment scams – more than $4.6 billion – than any other category in 2023. The second highest loss category was imposter scams with losses of nearly $2.7 billion.

The following is a breakdown of the top frauds reported:

– Imposter scams (in business and government impersonators)

– Online shopping scams

– Prizes, sweepstakes and lottery scams

– Investment scams

– Business and job opportunity scams

The method scammers reportedly used to reach consumers most commonly was via email, which has displaced text messages. Phone calls are now the second most reported contact method. LEARN MORE

Guard Well Identity Theft Solutions exists to provide you, your family, and your employees from the damages of identity theft. If you have any questions or concerns, please contact our Member Services team immediately. We are always available for you 24/7/365 at 888.966.4827 (GUARD).

 

Help Spread the Word: Identity Theft Awareness Week

Help Spread the Word: Identity Theft Awareness Week

Welcome to Identity Theft Awareness Week. January 29th to February 2nd, otherwise known as #IDTheftWeek, exists to spread resources so you and your loved ones can stay ahead of identity thieves. Whether you’re a business owner, a young adult, a service member, an older adult or someone caring for a senior, understand that knowledge is power and identity theft knows no boundaries.

With tax season right around the corner, it is especially important to know that one of the biggest signs of identity theft is when you are unable to file your tax return because someone else has already filed one using your personal identifying information (PII). Other signs of identity theft include seeing unfamiliar transactions on one of your accounts and/or seeing new accounts you didn’t open on one of your credit report checks.

Here are five tips from the Federal Trade Commission (FTC) to help protect your identity:

– Read your credit card and bank statements carefully. If there is something that you don’t recognize, check into it. Even though you might have dreamed about a Louis Vuitton handbag, chances are you would know if you purchased one and certainly wouldn’t be footing the bill if you didn’t.

– Know your payment due dates. If a bill you pay regularly, such as your electric or water bill, doesn’t appear in your mailbox (or inbox), contact the provider immediately. The last thing you want is to have anything shut off in the dead of winter or an energy bill that is three times what you were expecting.

– Shred any documents that contain your PII, medical or financial information. Many national chains provide shredding services if you don’t own a personal shredder. Check out your local UPS store or FedEx Office for options.

– Review each of your three credit reports at least once a year. Visit our credit report check for more information.

Guard Well Identity Theft Solutions exists to provide you, your family, and your employees from the damages of identity theft. If you have any questions or concerns, please contact our Member Services team immediately. We are always available for you 24/7/365 at 888.966.4827 (GUARD).

 

Photo courtesy credit: Dylan Gillis via Unsplash.com

 

Scammers are Impersonating FTC Inspector General Katsaros

Scammers are Impersonating FTC Inspector General Katsaros

The Federal Trade Commission (FTC) has released that scammers are using the names of their employees, including the Inspector General Andrew Katsaros to trick people into sending money or giving up their personal identifying information (PII).

What you need to know:

The FTC won’t threaten you or demand a payment. If you receive a phone call or mail with the name of the FTC Commissioner or staff member that threatens some dire consequence if you don’t pay immediately, it’s a scam. Don’t pay.

The FTC doesn’t give out prizes. If someone contacts you claiming that you need to pay to get your prize, it’s a scam. Don’t pay.

FTC employees won’t identify themselves with a badge number. If someone claiming to work for the FTC gives you a badge number, it’s a scam. Don’t fall for it and keep your PII safe!

Guard Well Identity Theft Solutions exists to provide you, your family, and your employees from the damages of identity theft. If you have any questions or concerns, please contact our Member Services team immediately. We are always available for you 24/7/365 at 888.966.4827 (GUARD).

Source: Federal Trade Commission

Photo Credit: Courtesy of Bermix Detail via unsplash.com

Consumers Lost Nearly $8.8 Billion to Scams in 2022

The Federal Trade Commission (FTC) has recently released data showing that consumers lost over $8 billion to scams in 2022. This massive loss is an increase of more than 30% compared to 2021.

The majority of the crimes came from investment scams ($3.8 billion) and imposter scams ($2.6 billion). Online shopping scams were more commonly reported of the 2.4 million fraud reports from consumers. The FTC also noted that the highest reported losses came from social media, and then followed by phone calls with the highest per person median loss of $1,400. Learn more HERE.

Guard Well Identity Theft Solutions exists to protect you, your family, and your employees from the damages of identity theft. If you have any questions or concerns, please contact our Member Services team immediately. We are always available for you 24/7/365 at 888.966.4827.

 

Hurricane Ian Scams: Protecting Yourself from Charity and Disaster Fraud

Hurricane Ian Scams: Protecting Yourself from Charity and Disaster Fraud

On September 28th, Ian, the fifth strongest hurricane on record in the United States, slammed into Florida as a category four. Devastation, flooding, loss of life and significant property damage along the rest of Ian’s path occurred in multiple states over the next few days. Following natural disasters like Ian, charity and disaster schemes from scammers quickly come to surface to those who were directly impacted and others that want to help.

The Federal Bureau of Investigations (FBI) has sent out reminders and tips on how to avoid falling victim to charity and disaster fraud.

– All government officials are required to carry official identification and show it if requested. If you are hesitant to believe them, contact the FBI directly to confirm their identity.

– All Federal Emergency Management Agency (FEMA) and assistant agencies will not ask for money to apply for assistance and they will not ask you for any financial information. If someone comes door-to-door, calls, texts or emails you, do not immediately give out your personal identifying information (PII), such as your social security number or bank account information, without first confirming their identity as legitimate and not a scammer.

– If you would like to donate to the many charities that are assisting survivors, understand that there are some fake charities out there. Unless you are giving to a charitable agency that you know and trust, go online and research the reviews and ratings as established by the Better Business Bureau (BBB). If you do donate, use a credit card. Gift cards and wire transfers are highly discouraged. Also remember that no legitimate agency is going to pressure you to donate.

We would like to remind you to not click on links from sources you do not know. The FBI suggests to manually type out the links instead of clicking them to prevent attempts to download viruses on your cell or laptop/computer.

As always, if you have any questions or concerns or suspect that you or a family member has been a victim of fraud, please contact Member Services immediately. We are open and always available for you 24/7/365 at 888.966.GUARD (4827).

 

Photo credit: NASA under license via unsplash.com.

How to Spot a Hacker Going After Your Business

How to Spot a Hacker Going After Your Business

When you think of a “bad guy,” what comes to mind? Someone sitting alone hunched over a keyboard in a dark hoody in a dark basement with fast typing fingers and maybe sporting a three-day-old beard? And what do you picture this anti-social “bad guy” doing? Are they only going after huge corporations and corrupt politicians? Nope! But that is what pop society has been assuming cybercrime is and that the everyday individual or smaller organizations aren’t being targeted.

 

The reality is that many of the faces of modern cybercrime don’t look like what we have read in fictional books and seen on tv and in the movies. These cybercriminals are much harder to spot because “they look a lot like legitimate businesses than you might expect,” Hubspot reported. “The work they might do day-to-day to steal personal information and disrupt businesses is pretty boring.”

 

So why do they hack? Money! Cybercrime has cost the world just under a trillion dollars in 2020.

 

The fact is that your Personal Identifying Information (PPI) is just like a currency. When stolen and aggregated, PPI can be sold for a hefty profit and “it’s a lot easier to try to get into your business’s data than to try to gather their own to sell.” Many websites sell aggregated collections of email addresses and passwords that have been gathered from past data breaches. From there, all it takes is a bit of unsophisticated scripting to use these emails and passwords to try to log into different websites across the internet.

 

“These folks aren’t looking to hit the biggest, most valuable businesses. It’s a case of quantity over quality.” These villains take a few thousand emails and passwords and see how many of them work out against high value services (such as email providers or CRMs) to see what data can be pulled out of those accounts to sell or how they can use those accounts for phishing emails or ransomware.

 

Look at the statement released by Darkside, the group whose ransomware attack brought down the Colonial Oil Pipeline and caused gas prices to spike in May this year. They released: “We are apolitical, we do not participate in geopolitics, do not need to tie use with a defined government and look for other motives. Our goal is to make money and not creating problems for society.” They want cash flow not world domination.

 

Hubspot reported in a blog last month written by Ryan DiPetta, “A lot of hackers look and behave like legitimate businesses, even if they do illegitimate things. Maybe they work a regular nine to five schedule. Maybe they take vacations with their kids. They’re trying to build a business just like you, too … but their business is built on theft and exploitation of your business and the data and trust of your customers.”

 

Are you and your employees protected? For more information on how to protect your company’s bottom line and employees by providing this must-have voluntary benefit, please click HERE.

 

Our team at Guard Well Identity Theft Solutions is available 24/7/365. Contact us at 888.966.GUARD (4827) or email [email protected] if you suspect fraud or have any concerns. We are here to help!

 

Photo credit: Markus Spiske via Unsplash.com