One of the great mysteries of social media—apart from why people need to share photos of their dinner—is what makes someone post false information without hoping to gain from it. These hoaxes sometimes end up going viral and taking on a life of their own, and the original sender only gets a little temporary boost in their visibility online.

There have been a lot of Facebook scams over the years and more than a few hoaxes, too. The key difference between the two is that scams and fraud seek to steal your identity, your money, access to your computer or account or some other criminal gain. Hoaxes, on the other hand, seem to only bring joy to the creator when they watch how many people share the misleading or false information.

A recently reported double-hoax playoff of changes to Facebook’s algorithms, while also requiring the “copy-paste” behavior to make it spread. Earlier this year, Facebook announced that it would adjust what types of posts and content showed up in your feed to make less relevant, commercially-based posts appear less frequently. It didn’t take long for people to assume Facebook was censoring posts and blocking some of your friends.

This hoax takes that fear to a new level and urges participants to “sneak” into a separate Facebook news feed, accessible only by copying and pasting their message into a new post. The message specifically states that you will be able to “bypass” Facebook’s algorithms and see posts from friends you haven’t heard from in years.

Unfortunately, it’s not true. There is no secret backdoor Facebook newsfeed hidden beneath fancy computer code, and copying the message to share with all of your friends will only highlight the fact that you  fell for a phony message. Sadly, engaging in comments to inform your friends that their post is a hoax will have the same engagement effect and cause the hoax to continue to spread.

Whenever you come across a social media hoax, it’s better left untouched. Don’t click “like” or any of the angry/frustrated emojis, don’t comment on it and don’t share it, even accompanied by a message that warns people of the hoax. Any engagement you give it simply gives it more visibility and power. If there is anything dangerous or compromising about the post that could lead to loss of money or data, try to message the person who shared it privately and explain the issue.

Contact the Identity Theft Resource Center for toll-free, no-cost assistance at (888) 400-5530. For on-the-go assistance, check out the free ID Theft Help App from ITRC.

Read next: The Harm in Hoaxes on Social Media

Labor Day is just around the corner, and perhaps no one is looking forward to the long weekend more than scammers and identity thieves. The three-day holiday lends itself to a wide variety of ways to steal your money, your personal data or both, so it’s important to brush up on how to spot a possible scam in order to avoid it.

Travel Scams

This particular holiday is traditionally a time for families to take one last quick getaway for the season. In 2015, travel and road service organization AAA said that an expected 35.5 million Americans travel over the three-day weekend. Unfortunately, another statistic can put a damper on those plans: according to the Better Business Bureau, vacation scams cost U.S. consumers around $10 billion per year.

While the internet has grown into an excellent resource for finding steep discounts and bonus packages on travel, accommodations and meals, it’s also a snare that can lead straight to a scammer. It’s important to be on the lookout for flashy pop-up ads, awkward or incorrect wording and spelling in emails or deals that are so cheap that they’re not believable. Remember, just clicking a link and looking into some of these deals can have repercussions if the website the scammer created installs malicious software on your computer.

Play it safe and only use trusted companies to book your hotel, flight or other vacation needs.



Thieves can insert skimming film into the card reader of a gas pump, point-of-sale system, even a restaurant payment card machine, and that film can nab all of the account information off your card. It’s then transferred onto a blank magnetic stripe card and used in physical locations (which will not necessarily trigger a “suspicious purchase” alert from your card since the card was present at the transaction). You need to be on the lookout for this common holiday travel pitfall, even if your travel plans don’t take you any farther than the local lakeside or park.

If a gas pump or POS payment machine looks tampered with, you might consider using a different pump, going into the store to pay or even using a different payment method. If you’re eating out and the server has to leave with the card to make payment, you could also fall victim to skimming. It’s always a good idea to look over your account statements routinely, but especially after any kind of holiday or major event.


Shopping Scams

Are you staying home this year? Labor Day might be a great time to take advantage of a number of sales and discount specials, but buyer beware, phishing emails that offer you massive discounts can redirect you to phony websites. Once there, you enter your personal information and payment card account, only to have it stolen by a scammer.

Fortunately, many retailers—both physical and online—advertise their upcoming holiday specials in advance. If you’re buying a high-end item, you should have plenty of time to look for the best deal and find the most reputable retailer.

Contact the Identity Theft Resource Center for toll-free, no-cost assistance at (888) 400-5530. For on-the-go assistance, check out the free ID Theft Help App from ITRC.

Read next: The Harm in Hoaxes on Social Media

Election season is here, and there just might be unprecedented interest in various states’ midterm elections. Pride and patriotism are leading more and more people to take an interest in the political system. Unfortunately, this civic interest can also cause scammers to take advantage of the public, targeting voters for identity theft, access to their financial accounts and more.

To be a civic-minded citizen while still protecting yourself, it’s important to know how to spot a possible scam and take action:

1. Voter surveys

One of the many ways that political candidates gauge the concerns of their constituents is to ask questions about the issues. Unfortunately, this approach can also allow scammers to seek personally identifiable information. Be careful not to overshare your name, address, email address, birthdate and certainly not your Social Security number or driver’s license number. It’s also important to avoid the “confirm your status as a registered voter” phone or email scams.

2. Voter registration drives

All over the country, dedicated volunteers are helping citizens register to vote. You may see tables at outdoor festivals or farmers’ markets, on college campuses or other widely populated events. If you’re concerned about your data security—such as the filled-out forms are left where anyone can see them—take the offered form, fill it out and mail it or deliver it to your local officials instead.

3. Petitions

This is another excellent way to express concern about critical issues, but it can also lead to identity theft if the person handling the petition does not properly administer it. You might have signed a petition in high school to get more pizza on the cafeteria menu, and that didn’t require much more than your signature. A political petition, on the other hand, can request things like names, addresses or phone numbers. However, there’s no reason for more sensitive information, and you are not required to submit your entire identity. Walk away if you get the impression that too much information is required.

4. Voting “support”

Believe it or not, someone may try to make a fast buck off your desire to vote. With so much news lately about names dropping from the voter rolls, scammers can easily send out phishing messages that playoff your fear of not getting to vote. However, there is absolutely no reason to pay someone to tell you if you’re still registered to vote! That information is available for free from your local voter registration office.

5. Hoaxes on Social Media

Yes, there have been reports about some shady political ads on social media, unauthorized access to voter information via Facebook and more. Don’t let that cause you to become anyone’s victim. If you see posts online that you aren’t sure are accurate, don’t hit like or share. Check them out for yourself from reliable sources before engaging with them on social media. Remember, even if they’re not out to steal your account access or your identity, engaging with a post—even to point out that it contains false or misleading information—gives that post greater visibility and traction.

Contact the Identity Theft Resource Center for toll-free, no-cost assistance at (888) 400-5530. For on-the-go assistance, check out the free ID Theft Help App from ITRC.

For years, fraud experts have warned consumers about phishing attempts that try to steal money and identifying information. As people have become more aware of the threat, scammers have had to up the stakes in order to trick users into downloading malicious content to their computers or hand over their sensitive information.

One common approach is the “there’s something wrong with your account” email. These messages appear to come from a well-known company. It might claim your account has been suspended due to strange activity, an order you placed (or possibly didn’t place) is not shipping due to a problem with your credit card, or any other plausible scenario. The goal is to get you to click the link and submit personal information, such as login credentials, passwords or credit card info.

So how is a company supposed to inform you when there really is an issue with your account? A good example may be the one below:

The email informed the recipient of the need to take action on their account by exiting the message and logging in to the account themselves. Rather than the common ploy of having the victim click a button that supposedly redirects to their account, this message plays it safe: Leave this email, go to your account, login for yourself, and make sure your information is accurate.

Also, further below, there is a support number to call for help. That can be indicative of a scam, though, so beware; numerous scams have included phone numbers to call that simply redirect to the scammers, so anyone receiving this email should verify the phone number before calling. However, the information the recipient needs is laid out quite clearly in the email, and hopefully, no further support is even required.

At first glance, this email could look and sound just like any other phishing email, but the difference is in the action the recipient is to take. Instead of falling into a potential trap, the reader is only told to do the very same activity they would do if they had not received the message, namely, log into their account and make sure their profile is up-to-date.

Contact the Identity Theft Resource Center for toll-free, no-cost assistance at (888) 400-5530. For on-the-go assistance, check out the free ID Theft Help App from ITRC.

Ah, summer! What’s better than longer days, warmer temps and maybe a quick out-of-town getaway to enjoy the season? Why, a budding romance, of course!

Unfortunately, for too many victims, that newfound romantic interest might be something other than he or she seems. Romance scams are some of the cruelest, costliest forms of fraud. Preying on people’s loneliness and hope, the perpetrators have no qualms about not just stealing your money, but also leaving you broken-hearted, embarrassed and ashamed.

With the summer months in full swing, there’s no time like the present to identify the telltale signs of a possible scam and develop some strong self-protection skills:

1. The Out-of-Towner Love Interest – It seems like many romance scammers have one unifying feature: they work out of town or in career fields that keep them isolated. It might be on an offshore oil rig, a deep-sea fisherman, a deployed active duty service member, or any other plausible excuse to not be available to talk or message all the time. If you meet someone online with one of these specific or similar job areas, proceed with caution because that’s a huge red flag

2. The Struggling Widow – Many online scammers rely on the sob story to get money out of their victims. A typical scenario is a single parent with a wonderful child, as this allows them the chance to very quickly ask their victim for money. “My son’s computer broke and I’m away at sea, he’s going to fail the school year and lose his scholarship if he doesn’t turn in this paper…” Who would refuse to help a dedicated student while his parent is out of town? Again, romance scammers often rely on the widow/widower story to snare their marks

3. The Overly Zealous Significant Other – “I’ve never felt this way before… I hope I don’t scare you off, but I think I want to spend the rest of my life with you.” Romance scammers often take a long time to groom their victims, keeping the charade going for months before starting to cheat them. During that time, scammers may even work in shifts to ply their victims with sweet talk, text messages filled with hearts and flowers and more. By escalating the relationship quickly, the victim already feels invested in it. Refusing to give money to a desperate person after they’ve professed their love and started talking about marriage? Inconceivable

4. And Finally, Show Me the Money – When a romance scammer finally does come around to asking for money, there’s ALWAYS a reason. “I hate to ask you this, please feel free to say no…” but my mother’s utilities are about to be shut off due to an error at the bank and I’m away at sea, or our son’s tuition check didn’t clear and they’re going to kick him out of school right here at exam time if it’s not paid. Other, more sophisticated tactics even involve the scammer sending the victim a check or granting them access to their bank accounts, only to end up costing the victim money when they go back on their promise. Many victims have also reported being told to send the money via untraceable methods like Western Union despite supposedly knowing this person.

Here’s the real clincher about romance scams: far too many victims keep it going rather than admit—to others or themselves—that this was all a giant lie. There have even been reports of victims becoming part of the scam, helping to launder money or bilk others for funds. Do NOT hesitate to cut off any relationship that starts to smell like a fraud.

If you are ever asked for money from someone online, stop and think: why would this person need me to help? Where are the other people this individual could turn to? Then, try this: refuse. Be firm about not paying, no matter what excuse the other party gives, and see if it leads to the end of the relationship. Any legitimate love interest would immediately backtrack and apologize, but a scammer will double down with harsh comments, pleas for help, and any other statement to get the money out of you. Don’t fall for it, and don’t let love turn into heartache and loss by giving in.

Contact the Identity Theft Resource Center for toll-free, no-cost assistance at (888) 400-5530. For on-the-go assistance, check out the free ID Theft Help App from ITRC.

In a large-scale data breach, hackers may be after a variety of things. It might be sensitive data like personal identifiable information, email addresses and passwords or the answers to common security questions. It can also be slightly less sensitive but still usable information like payment card credentials and home addresses.

But what do hackers actually do with this information? Sometimes they use that data themselves and in other cases, they will sell it or hold it for ransom from the company it was stolen from. Payment card data can have a narrow window of opportunity for use since financial institutions may cancel those account numbers once they discover the breach.

There’s another way that credit cards have been used following a data breach, one that steals additional benefits from the victim. The theft of airline miles or bonus points tied to the victims’ credit cards may go unnoticed because most consumers don’t think to monitor their extra perks; once the hackers have stolen the account credentials, they can use or sell the additional perks on those accounts.

One of the first steps to protecting your perks accounts is to secure it with a strong password, one that you don’t use on other accounts and that you change frequently. By protecting this account and others, you’ll help prevent a breach of your accounts as well as stop a thief who bought old information on the dark web from a database of previously hacked information.

Another key step is to take some time to monitor these accounts from time to time. Thieves get away with it because too often we happily store up those miles or bonus points for a large trip or a major purchase. Monitoring your points from time to time can help you not only keep track of how far you have to go to reach your perks goal, but also lets you stay on top of any problems that arise.

If you do find out that someone has tampered with your perks account, contact your credit card issuer immediately and change your password on this or any account that uses those same login credentials. This could actually be the first sign that someone has accessed your credit card account, so it’s a good idea to order a copy of your credit report, too.

Contact the Identity Theft Resource Center for toll-free, no-cost assistance at (888) 400-5530. For on-the-go assistance, check out the free ID Theft Help App from ITRC.

With all of the fun and frolic surrounding the Fourth of July, it’s easy to forget there can be a downside. Holidays are an especially active time for scammers, and “patriotic” scam attempts can strike in a variety of ways. They can target consumers through different methods of attack, like phishing emails or spam texts and they often include a variety of premises to lure you in.

Here are some of the more popular phishing attempts, scam tactics and frauds:

  1. Patriotic emails and social media posts – Phishing messages and fraudulent social media posts can tug at your heartstrings at any holiday, and Independence Day is no exception. In this case, it may be a more such as an active duty or veteran’s scam, political or election scam, or any other country-specific theme. Remember that wonderful charities and organizations doing great work all year long, so avoid the temptation to impulse-click on an untrustworthy source.
  2. Shopping – There are incredible retail deals advertised during the July 4th holiday, and that can also mean bogus web coupons and sales links to click. Protect yourself from online shopping scams by only doing business with trusted sources, using a secure payment method for your purchases and steering clear of “time is running out!” impulse shopping scams.
  3. Fireworks scams – If you live in a state that allows citizens to shoot their own fireworks, beware: roadside stands and temporary shops make sense when selling a product that is only popular a few times a year, but that also means you’re handing your payment information to someone who may be skipping town in a day or two. If feasible, cash may be the way to go, instead of giving a transient businessperson your payment information.
  4. Virus attacks and tech support scams – In years past, there have been reports of malicious software attacking on or around the Fourth of July, playing off of the theme of rebellion, overthrowing tyranny and more. Be very mindful both of genuine cyberattacks and fake ones that pretend to lock up your computer or inform you that you’re already infected. Beware of phony tech support scams too, trying to get your money and access to your computer in exchange for “cleaning” out a cyberthreat.

Remember, there are a variety of threats that can have a stronger impact on the holiday, both physically and from a data security standpoint. Be mindful of scams, fraud and be safe in whatever summer activities you choose to enjoy. And have a Happy Fourth!

Contact the Identity Theft Resource Center for toll-free, no-cost assistance at (888) 400-5530. For on-the-go assistance, check out the free ID Theft Help App from ITRC.

There are a wide variety of social media platforms, many of which cater to a very specific group of users. LinkedIn, the career-minded social media site, helps users connect with each other through and across various industries. As such, it’s for messaging, finding new contacts, exploring new career opportunities and other related activity.

But LinkedIn may just be the latest platform to fall victim to a flood of “spoofing” scams. Reports to the Better Business Bureau show some LinkedIn users have been receiving personal loan offers that appear to come from legitimate site users who work for real companies. However, these loan offers are scams.

According to the BBB, “You get a LinkedIn message offering you financing for a personal loan. It comes from someone who appears to work for a legitimate company. You check out their LinkedIn profile, and it looks real. You may even have several LinkedIn connections in common. Some scammers will also set up a fake company website.”

There are several possibilities related to how this may be happening. The first is that scammers, as indicated above, make fake profiles and spend some time gathering connections in order to reach new victims. Another possibility is that someone can hack an account; the person whose account sent out the message may not even realize someone is using their account. Also, a scammer can create a whole new profile using an existing person’s name, photo and work experience in order to lure existing connections into falling for the message.

Once the message goes out, the thief is after personal information via the bogus loan application and money in the form of a “processing fee” to complete the loan application.

As with any method of social media messages, users have to be very careful about the kinds of information they share and how they respond. Scams and hoaxes are quite common on the different platforms, so using good judgment means treating every potential opportunity—whether it comes from a stranger, a connection or an account belonging to a trusted friend or colleague—with an air of caution.

Contact the Identity Theft Resource Center for toll-free, no-cost assistance at (888) 400-5530. For on-the-go assistance, check out the free ID Theft Help App from ITRC.

If you’re not a soccer fan, you might not be following the news of the upcoming World Cup spectacular.

If you are a soccer fan; you know that this single sporting series garners almost as much worldwide attention—and fan devotion—like the Olympic Games. Unfortunately, as with any high-profile event, the World Cup also draws a lot of attention from scammers.

Every four years, the World Cup tournament brings teams and spectators together in the host city, while millions more follow the action via television, the internet, live streams and news updates. All of the excitement that the tournament generates can lead to a wide variety of crimes.

Ticketing scams (for the World Cup and any other major headline event) are one of the most common pitfalls. The bait and switch aspect to online ticket fraud and the outrageous prices from ticket scalpers can easily separate a fan from their money. Phony websites that claim to sell tickets can also target users’ computers with viruses and malware. It’s important to purchase tickets for major events from reputable sources and if possible use a payment method that will afford you some sort of buyer protection.

Online viewing of key matches can help keep you connected, but trying to watch all the action for free when a major television network is not broadcasting it can leave you vulnerable to hacking. How? Shady websites that claim to have all of the events or phishing messages that pretend to let you watch for free can infect your computer with viruses and other malware. Remember to only use legitimate, legal sources to watch the matches.

Travel document scams for the events will likely be a problem, especially with the host venue in Russia. Scammers who intend to play off of confusion surrounding the necessary documentation may send out phishing emails that request mysterious fees or highly-sensitive identifying information. It’s important that fans understand the travel requirements before booking their trips in order to avoid falling victim to some form of government document scam.

Other travel scams involve getting to the event and finding a place to stay can also be a headache. Bogus websites that offer unbelievable travel deals for the World Cup could end up being nothing more than a bait-and-switch scam that steals would-be travelers’ money, so it’s important to book all of your transportation and accommodations through well-known sites that offer traveler protection.

Friend scams are usually so poorly worded that you’d think it would be easy to spot them. However, all it takes is a moment of doubt. If a scammer can convince you that a friend or relative has traveled to the World Cup and is in legal trouble, has been robbed, doesn’t have money, is hurt and in the hospital, or any other plausible story, you might be tempted to hand over some money. Instead, play along while using another contact method to reach out to your friend and confirm that they’re safe.

Knock-off event memorabilia has been a problem for major headline events for many years. The worst that usually happened, though, was the fan purchased a poorly made “fake” jersey for a decent price. Now, however, thanks to the ability to make a website and list items for sale, scammers can cut-and-paste photos of actual FIFA team products and never send the non-existent gear while stealing fans’ money. It’s important that fans only purchase team items from licensed sellers who are working with FIFA’s approval.

Contact the Identity Theft Resource Center for toll-free, no-cost assistance at (888) 400-5530. For on-the-go assistance, check out the free ID Theft Help App from ITRC.

Travel scams have been around for quite some time, but it seems like every time word gets out about a common tactic, a new method of cheating an innocent traveler comes up.

 This isn’t to say that vacationers and business travelers don’t have to be on the lookout for older scams like bait-and-switch accommodations or “too good to be true” deals that leave you empty-handed. Instead, it means those old methods of scamming travelers are still out there, but new methods have joined their ranks.

1. Airline Miles Theft

With news of data breaches that attack retailers’ point-of-sale systems (those “swipers” where you slide your card), there’s no shortage of credit card numbers for sale on the dark web. But researchers have also found another hot commodity for sale in these seedy corners of the internet: airline miles.

Stealing airline miles from an unsuspecting consumer requires gaining access to their accounts, but criminals can combine multiple victims’ airline miles to purchase complete vacations then sell those online. Best of all, the criminal may have a long time to steal, plan, organize and sell the vacation, considering that most consumers don’t think to monitor their airline miles on a regular basis.

2. Embassy Scam

This scam is becoming so common that it’s even been reported in the US, targeting residents of other nationalities. It can take on a few different forms, such as visa scams or other document scams. In this one, you have traveled abroad and are informed that your paperwork is not in order. You failed to purchase some necessary document or certification and as such, you are in the country illegally. Unfortunately, the person who informs you of the problem is all too happy to sell you the “proper” but bogus documentation.

3. Age of Victims

While this isn’t a specific scam, it’s important to note what studies have shown about scams and identity theft. The stereotype about the senior citizen learning to work social media only to be lured in by a scammer isn’t the reality of the crime. It still happens to older adults, of course, but millennials are more likely to lose money to a scammer than senior citizens.

That can be just as true in the case of travel scams; part of the logic in why this data is true stems from an inherent comfort level about privacy. Millennials often feel like their information is already “out there,” and are quick to adopt new technology and platforms that might not have all the security kinks worked out yet. With millennials flocking to new travel platforms like ride-hailing and online marketplaces to share accommodations, they may be in as much danger from travel scams as any other type.

Of course, these are just a few of the things that smart travelers need to be mindful of. Other long-standing advice like being careful of fake travel deals, shady travel websites that steal your information, connecting over public, unsecured Wi-Fi hotspots and more, still applies just as much as ever. Staying vigilant shouldn’t ruin your vacation, but it does need to be a priority.

Contact the Identity Theft Resource Center for toll-free, no-cost assistance at (888) 400-5530. For on-the-go assistance, check out the free ID Theft Help App from ITRC.