USAA, Adobe, Walmart and MORE: Top Scams of the Week

Header

Author: Trend Micro

October 9, 2023

This week, we’ve found lots of phishing scams in which scammers are impersonating trusted brands, including Walmart, USAA, and Adobe. Would you have been able to spot all these scams?  

Phishing Scams

Impersonating trusted brands, scammers send text messages or emails containing phishing links. They will attempt to make you click them, under various pretenses.

Why? These links will take you to phishing sites designed to record your PII, for example, your email address, credit card number, Social Security number. With credentials like this, scammers can drain your bank account, steal your identity, or commit any number of other crimes. Below are some examples.

Fake USAA Security Alert

One of the most common tactics scammers use is to send fake security alerts and prompt you to verify your account via the attached phishing link. We found lots of fake United Services Automobile Association (USAA) emails that say a payment to your account is on hold and that you need to take urgent action to receive it.

If you fall for it and click on the link, it will take you to a fake USAA website that can collect all the log-in credentials and other personal data that you enter. In this way, scammers can gain control over your USAA account and lock you out. Don’t let them!

[Note: the legitimate web address of the USAA website is usaa.com. If you want to check your account, please go to the official website directly instead of using links from unknown resources!]

Stay Away from Scams for FREE

The truth is, there are lots of scams and scam sites on the internet and they’re getting harder to detect. For an easy and reliable method of detecting and avoiding scam sites, check out our free browser extension (Trend Micro ID Protection) and free mobile app (Trend Micro Check). 

Both ID Protection and Trend Micro Check can protect you against scams, phishing links, dangerous websites, and lots more! If you come across something dangerous online, you’ll be alerted in real time so you’ll know to stay well clear   

Adobe Phishing Email

Have you received notifications from Adobe that ask you to follow the attached link and view a shared file? Hold on. It could be a scam!

At first glance the attached link may seem genuine. However, its fake web address will point you to a phishing page where you could end up exposing your PII there. Be careful!

[Note: hover on the link to see the full address and check that it corresponds to that of a correct Adobe page — i.e., adobe.com.]

Walmart Gift Scam​

We’ve written about fake Walmart text messages many times before. Tricking you into thinking  that you’ve won an Apple product, scammers will instruct you to claim your gift via the attached phishing link:

(Our Walmart competition winner is: Ron. Last day to collect your new apple product: <URL>)
 
If you do as instructed, you will be led to a fake Walmart online support page that requires you to answer several questions:

In the end, the page asks you to provide your PII, including delivery address, phone number, and credit card details. There’s NO gift, and your PII will end up in scammers’ hands. Watch out!

Fake Shipping Texts

Besides security alerts and free gifts, scammers also love to create fake delivery notifications in order to trick would-be victims. They will falsely claim that there’s been trouble with your package, and prompt you to update your delivery information to get the package:

Alert: Your package delivery attempt was unsuccessful. To ensure future successful deliveries, kindly update your info here: <URL> Thanks!
 
Unsurprisingly, the link will take you to a copycat website of the delivery company. Here, as above, you’ll be pressured to submit PII — which will be harvested by the scammers.

Tips to Stay Safe Online

  • Double-check the sender’s mobile number and email address. Even if it seems legitimate, think twice before you take any action. 
  • Never click on dubious links! Only go to official websites and apps to make purchases, update information, or track a package’s status.
  • If you’ve accidentally revealed your PII somewhere, change your passwords immediately and inform your bank and/or other companies that scammers may contact them pretending to be you.
  • Check if any of your PII has been leaked and secure your social media accounts using Trend Micro ID Protection.
  • Finally, add an extra layer of protection to your devices with Trend Micro  Maximum Security. Its Web Threat Protection, Ransomware Protection, Anti-phishing, and Anti-spam Protection will help you combat scams and cyberattacks. 

If you’ve found this article an interesting and/or helpful read, please SHARE it with friends and family to help keep the online community secure and protected. Also, please consider leaving a comment or LIKE below. 

 

This article was published in collaboration with Trend Micro.

Report a Scam!

Have you fallen for a hoax, bought a fake product? Report the site and warn others!

Help & Info

Popular Stories

As the influence of the internet rises, so does the prevalence of online scams. There are fraudsters making all kinds of claims to trap victims online - from fake investment opportunities to online stores - and the internet allows them to operate from any part of the world with anonymity. The ability to spot online scams is an important skill to have as the virtual world is increasingly becoming a part of every facet of our lives. The below tips will help you identify the signs which can indicate that a website could be a scam. Common Sense: Too Good To Be True When looking for goods online, a great deal can be very enticing. A Gucci bag or a new iPhone for half the price? Who wouldn’t want to grab such a deal? Scammers know this too and try to take advantage of the fact. If an online deal looks too good to be true, think twice and double-check things. The easiest way to do this is to simply check out the same product at competing websites (that you trust). If the difference in prices is huge, it might be better to double-check the rest of the website. Check Out the Social Media Links Social media is a core part of ecommerce businesses these days and consumers often expect online shops to have a social media presence. Scammers know this and often insert logos of social media sites on their websites. Scratching beneath the surface often reveals this fu

So the worst has come to pass - you realise you parted with your money too fast, and the site you used was a scam - what now? Well first of all, don’t despair!! If you think you have been scammed, the first port of call when having an issue is to simply ask for a refund. This is the first and easiest step to determine whether you are dealing with a genuine company or scammers. Sadly, getting your money back from a scammer is not as simple as just asking.  If you are indeed dealing with scammers, the procedure (and chance) of getting your money back varies depending on the payment method you used. PayPal Debit card/Credit card Bank transfer Wire transfer Google Pay Bitcoin PayPal If you used PayPal, you have a strong chance of getting your money back if you were scammed. On their website, you can file a dispute within 180 calendar days of your purchase. Conditions to file a dispute: The simplest situation is that you ordered from an online store and it has not arrived. In this case this is what PayPal states: "If your order never shows up and the seller can't provide proof of shipment or delivery, you'll get a full refund. It's that simple." The scammer has sent you a completely different item. For example, you ordered a PlayStation 4, but instead received only a Playstation controller.  The condition of the item was misrepresented on the product page. This could be the