Scam of the Day
Scam of the day – June 18, 2026 – Father’s Day Scams
Sunday is Father’s Day which for many people is an opportunity to show our fathers how much we love and appreciate them. For scam artists, it is yet another opportunity to scam people. One of the most common Father’s Day scams involves e-cards which are great, particularly for those of us who forget to send a Father’s Day card until the last minute.
Identity thieves send emails purporting to contain a link to an electronic Father’s Day card, but instead of an electronic greeting card, what they actually are sending is malware that becomes downloaded when the victim clicks on the link. A common type of malware sent by criminals is keystroke logging malware enables an identity thief to steal personal information from the victim’s computer that can be used for purposes of identity theft. In other instances, the malware is ransomware which will encrypt all of your data which the hacker threatens to destroy unless you pay a cryptocurrency ransom.
Another common Father’s Day scam involves an email or text message that you get offering Father’s Day gifts at tremendously discounted prices. All you need to do is to click on a link to order online. The problem is that many of these offers are indeed scams. If you click on the link, one of two things can happen and both are bad. Sometimes the link will take you to an order form where you provide your credit card information, but never get anything in return. Instead, your credit card information is used to make you a victim of identity theft. Even worse is the other possibility which is by clicking on the link, you will unwittingly download a keystroke logging malware program that will steal all of the personal information stored on your computer and use that information to make you a victim of identity theft.
Be careful when making online purchases. Merely because a website offering great prices may be highly listed on Google or other search engines does not mean that it is legitimate. All it means is that the scammers know how to manipulate the positioning of their website in a Google search. Other times the scammers will merely pay for an advertisement for their website to appear at the top of a search engine search.
TIPS
Never click on a link to open an electronic greeting card unless the e card specifically indicates who sent the card. Phony e cards will not indicate the name of the sender. Even if the sender is someone you recognize, you should independently confirm with that person that they indeed sent you an e card before clicking on the link. Don’t depend upon your security software to protect your phone, computer or tablet because even the most up to date security software will always be behind the latest zero day defect malware.
It is always dangerous to buy anything online from any store or company with which you are not familiar. Check out the company with your state’s Attorney General, the Federal Trade Commission or just do a Google search to see if the company is legitimate. Even then, you are better off going directly to the company’s website rather than dealing with a company through an email that may just be a forgery of an email from a legitimate company. As always, if the offer you receive sounds too good to be true, it usually is.
You also can use the Google Safe Browsing Tool to see if a particular website you are considering for a Father’s Day purchase is legitimate. https://transparencyreport.google.com/safe-browsing/search
Never click on a link in an email or text message until you have independently confirmed that it is legitimate. The risk of downloading malware is too great. Even if your computer or other electronic device is protected with anti-virus and anti-malware security software, the best security software is always at least thirty days behind the latest malware. Trust me, you can’t trust anyone when it comes to clicking on links. Even if the link is contained in a communication that appears to come from a person or company you trust, you should always verify that it is legitimate before clicking on the link. In the case of companies offering free gifts or great deals, you should go to the company’s legitimate website where you can find any real promotion or gift being offered.
If you are not a subscriber to Scamicide.com and would like to receive daily emails with the Scam of the day, all you need to do is to go to the bottom of the initial page of http://www.scamicide.com and type in your email address on the tab that states “Sign up for this blog.”
Scam of the day – June 17, 2026 – Evolution of the Brushing Scam
I first told you about “brushing” in August of 2020 after many people in the United States, Canada and the United Kingdom reported receiving unordered packages of seeds sent from China. A wide variety of conspiracy theories quickly surfaced to explain what was happening, but the truth was that it was an example of a scam called “brushing.” Brushing was the name given to using false orders for products to boost the prominence of an online vendor.
Vendors pay brushers to make large orders of their product and ship them to strangers to make the sales appear to be legitimate. The brushers follow up on these purchases by posting glowing reviews of the vendor’s product. This combination of increased sales volume and positive reviews will, in turn, result in the increased prominence of the vendor in online marketplaces and result in increased sales. Brushing is illegal in the United States and China, however, it is quite commonly used by Chinese companies.
Now we are seeing a resurgence of this scam, but in a more threatening manner. While in the original brushing scam, people receiving the unordered items did not suffer any financial harm, now scammers are sending unordered goods, most often through Amazon, to people with a QR code and instructions to scan the QR code in order to see who sent the goods. If you scan the QR code either you will be taken to a phony, but legitimate appearing website where you will be prompted to provide personal information that will be used to make you a victim of identity theft or, even worse, merely by scanning the QR code you may download malware that will steal personal information from your phone that can lead to identity theft.
TIPS
If you get unordered goods with instructions to scan a QR code, report the package to Amazon using the form found at https://www.amazon.com/gp/help/customer/display.html?nodeId=G33XVXQPUV79Z2ZC Do not scan the QR code, As with the initial instances of the brushing scam, you are legally entitled to keep any unordered goods sent to you.
If you are not a subscriber to Scamicide.com and would like to receive free daily emails with the Scam of the day, all you need to do is sign up for free using this link. https://scamicide.com/scam-of-the-day/
Scam of the day – June 16, 2026 – Bogus DeepNude Deepfake App Scam
Deepfake porn by which someone is able to use deepfake software to take the photo of someone they know or a celebrity to create what appear to be nude photos or videos of the unwary victim has been a problem for a few years as the technology becomes easier to use and more available. In particular high school boys have abused deepfake technology to make and circulate deepfake nude photos and videos of their female classmates. Now in apparent poetic justice some of those deepfake purveyors are downloading malware when the try to use deepfake porn sites.
The Russian cybercrime gang FIN7 which has also been known as Carbanak has created seven websites that advertise what they refer to as a “DeepNude Generator” which provides artificial intelligence deepfake technology to enable anyone using their site to create deepfake nude photos and videos. People either downloading the software of signing up for a free trial end up downloading various forms of malware including ransomware. FIN7 has also used their technical expertise to manipulate the algorithms used by search engines to enable them to get a prominent listing in searches for porn sites.
TIPS
The easy piece of advice to avoid the problem of downloading malware in this manner is to merely avoid doing deepfake porn which is illegal under recent federal law. The problem is that the temptation for some people is just too great. Compounding the problem is that the probable target of FIN7 which has used cybercrime to steal more than 1.2 billion dollars is not individual users, but large companies where they hope to lure employees into downloading the malware at work and enable FIN7 to use their malware against large companies that can be profitable targets for ransomware and other malware.
If you are not a subscriber to Scamicide.com and would like to receive daily emails with the Scam of the day, all you need to do is to go to the bottom of the initial page of http://www.scamicide.com and type in your email where it states “Sign up for this blog.”
Scam of the day – June 15, 2026 – Costco Members Targeted by Scammers
Big box wholesaler Costco is extremely popular with more than 63 million members and anything popular with the public is also going to be popular with scammers. Imposter scams where scammers generate massive numbers of emails posing as Costco informing the targeted victim that his or her Costco membership requires renewal. Generally, the emails contain a link that takes the targeted victim to a counterfeit AI created Costco website where they are prompted to provide their log in credentials and credit card information. The email appears legitimate and carries the Costco logo and the language, which also may be AI created, appears legitimate with perfect grammar. Providing the requested information will lead to identity theft and credit card fraud. Because so many people are members of Costco, scammers merely send out their phishing emails in large numbers without knowing whether or not each person receiving the email is actually a Costco member confident that many Costco members will be among the people receiving the email.
TIPS
Fortunately, there are a number of red flags that can help you recognize this scam. In many instances if you look closely at the email address of the sender, it will not have anything to do with Costco, however, other times the email address may look like a legitimate Costco email so that is not a hard and fast rule. Costco never asks for sensitive information in unsolicited emails and never provides links to renew memberships, but will instruct members to navigate directly to the Costco.com website. If you do receive such an email and think that it might be legitimate, merely go to Costco.com directly rather than click on a link and you will be able to determine if the email is a scam.
If you are not a subscriber to Scamicide.com and would like to receive daily emails with the Scam of the day, all you need to do is to go to the bottom of the initial page of http://www.scamicide.com and click on the tab that states “Sign up for this blog.”
Scam of the day – June 14, 2026 – Comcast Data Breach Class Action Settlement Update
In the Scam of the day for December 22, 2023 I first told you about the data breach affecting all thirty-six million customers of Internet service provider Comcast Cable Communications which occurred between October 16, 2023 and October 19, 2023 in which usernames, hashed (encrypted) passwords, birth dates, security questions and answers as well as the last four digits of the Social Security numbers of its customers were compromised. Some people might mistakenly believe that having only the last four digits of their Social Security number in the possession of scammers does not put them in jeopardy. It most certainly does. The first three digits of your Social Security number relate to where you live and is easily determined; the second two digits are group numbers that until 2011 were based on when you obtained your Social Security number and are even available on the Social Security website for years up till 2011, but even for numbers issued after that date, there are only 99 possibilities so it is not particularly difficult for an identity thief to determine your Social Security number with just the last four digits. Armed with your Social Security number, a criminal can make you a victim of costly identity theft quite readily.
A class action against Comcast alleging negligence in protecting the personal information of its customers was filed shortly after the data breach and the case has now settled with Comcast agreeing to pay $117.5 million. As is common in such settlements, Comcast did not admit liability. Class members can receive reimbursement for out-of-pocket expenses and lost time. Alternatively, class members can choose a cash payment of $50. In addition to the cash payments, Comcast is also offering class members three years of credit monitoring, dark web monitoring, authentication alerts, high-risk transaction monitoring, identity theft insurance and monthly credit score tracking. A final court hearing at which the settlement will be approved is scheduled for July 7th. The deadline for filing a claim is August 14, 2026. Here is the link to where you can file a claim. https://forms.ksacms.com/efiling/fr/eform/comcastbreachsettlement_claimform/new?form-version=1&fr-wizard-page=section-1
Regardless of whether you were affected by this particular data breach, we are all likely to be victims of future data breaches. So what can you do to protect yourself from data breaches that will be occurring?
TIPS
One important lesson is to limit the amount of personal information that you provide to companies and websites whenever possible. For example, your doctor doesn’t need your Social Security number for his or her records.
You should make sure that you have a unique password for each of your online accounts so that if one of your passwords is compromised in a data breach, all of your accounts will not be in danger. If your information is compromised in a data breach, you should immediately change the password for that account.
If you have not already done so, set up dual factor authentication for each of you accounts where it is available. This will protect you from having those accounts stolen by someone who may have access to your password. However it should be noted that the malware responsible for this particular data breach is able to bypass password requirements and dual factor authentication.
https://www.transunion.com/credit-freeze
https://www.experian.com/freeze/center.html
If you are not a subscriber to Scamicide.com and would like to receive daily emails with the Scam of the day, all you need to do is sign up for free using this link. https://scamicide.com/scam-of-the-day/
Scam of the day – June 13, 2026 – Overpayment Scam
The overpayment scam is the basis for many scams including phony mystery shopper scams about which I have written many times. An example of the overpayment scam occurred when a British Columbia wedding photographer was scammed out of $4,600 through this scam. The scam began when the photographer was contacted by someone seeking to hire the photographer to take pictures at his daughter’s wedding. The photographer, Esther Moerman asked for a $700 deposit, but ended up receiving a check in the amount of $5,500. When Moerman reported to the scammer that the amount sent was incorrect, the scammer told Moerman that it was an accounting error and that the excess funds were supposed to pay for catering. The scammer then asked Moerman to wire the money to the caterer, which Moerman did. As you can guess, the scammers check was counterfeit and bounced even though Moerman’s bank initially gave her provisional credit which led her to believe that the check was valid. Once the check was found to be counterfeit, the provisional credit was removed from Moerman’s account, however, the money she wired to the phony caterer from her account was lost forever.
TIPS
This is just another variation on the scam whereby the victim, for whatever purposes receives a check in excess of the amount owed to the victim and asks the victim to send back the difference. There are a number of tell tale signs to look for and steps to take to avoid this type of scam. First, you need to remember that although a check may appear to have been cleared by your bank after a few days, all you are really getting is “provisional credit” and when the counterfeit check eventually bounces, the credit is taken back from your account and you are left having sent your own money to the scammer. The prudent thing to do when being paid by a check is to wait until the check has fully cleared before you can feel confident that the funds actually are in your account. This may take a few weeks. Most importantly, never accept a check for more than what is owed you and send the difference back. It is always a scam. Asking you to wire money from your account is also something about which you should be skeptical because once money is wired, it is impossible to get it back.
If you are not a subscriber to Scamicide.com and would like to receive daily emails with the Scam of the day, all you need to do is to go to the bottom of the initial page of http://www.scamicide.com and click on the tab that states “Sign up for this blog.”
Scam of the day – June 12, 2026 – Why You Should Have Unique Passwords for All Your Accounts
Identity theft is a serious crime that can result in financial harm and tremendous disruption of the lives of its victims. We are presently in an era of constant major data breaches so no matter how careful you are about protecting your personal information, you are only as safe as the security at the companies and government agencies that have your personal information. While often people are less concerned when data breaches do not result in the theft of their Social Security number or credit card number, a data breach in which merely your email address and password were compromised can result in major problems. If, as many people you use your email address as your user name for all of your accounts and you also use the same password for all of your accounts, you are in serious jeopardy if a data breach occurs which results in that information becoming known to criminals. Criminals use “checking” software which will search the Internet to find companies, banks and other institutions where you have used your email address as your username. Once they find these companies, they will try to log in using the password that was obtained through a data breach. If that other account is an account such as your bank account, you are in serious trouble. It is for this reason that it is important to use unique passwords for each of your online accounts.
TIPS
You should have a unique, strong password for each of your online accounts so that in the event that there is a data breach and the password for one of your accounts becomes compromised, all of your accounts will not become vulnerable to being hacked. Creating and remembering strong, unique passwords for each of your accounts is not as difficult as it may appear. You can start with a strong base password constructed from a phrase, such as IDon’tLikePasswords. Add a few symbols like !!! and then adapt it for each account you have so that you will have a secure and easy to remember password for each of your online accounts. Thus, your Amazon password could be IDon’tLikePasswords!!!AMA.
Whenever possible use dual factor authentication for your accounts so that when you attempt to log in, a one-time code will be sent to your cell phone to insert in order to get access to your account. For convenience sake you can set up dual factor authentication so that it is only required if you are logging in from a different computer or device than you normally use.
An easy solution to the problem of the answers to knowledge based authentication security questions being too readily available on the Internet is to make the answer to your security question nonsensical. For instance, if your security question is what is your mother’s maiden name, you can pick something ridiculous, such as “firetruck” as the answer. No hacker will ever be able to find the answer to this security question online and it is so silly that you will remember it.
Also, with your email address commonly known by many scammers, you can expect to receive more phishing and even more dangerous, specifically targeted spear phishing emails that attempt to lure you into clicking on links containing malware or try to convince you to provide personal information that can be used to make you a victim of identity theft. Never click on links or provide personal information in response to an email or text message unless you are absolutely sure that the email or text message is legitimate.
If you are not a subscriber to Scamicide.com and would like to receive daily emails with the Scam of the day, all you need to do is to go to the bottom of the initial page of http://www.scamicide.com and click on the tab that states “Sign up for this blog.”
Scam of the day – June 12, 2026 – Docusign Phishing Scam
DocuSign is a company that provides technology for the transmission of contracts and other documents with features for electronic signatures and is used by many businesses. There has been an increasing number of scams in which phony DocuSign messages are being used to send malware infected links luring people into providing personal information that is used for identity theft purposes.
Copied below is an email I received that purports to be sent related to an unspecified business transaction This phishing email prompts me to click on a link to open a document that needed my signature. The phishing email looked very professional and contained the DocuSign logo and appeared legitimate. However, the email address of the sender was one totally unrelated to either DocuSign or anyone with whom I do business.
This phishing email was designed to lure the person receiving the email to click on the link and either provide personal information that could be used for identity theft, or, as more likely in this particular phishing attempt, merely by clicking on the link would have downloaded malware such as ransomware or keystroke logging malware into the computer of the person clicking on the link. Keystroke logging malware would have enabled the cybercriminal to steal all of the personal information from the computer and make that person a victim of identity theft. I removed the link from the email displayed below.
 |
||
|
||
Good Day, All executed documents are now available for download. The vendor release forms and contract waivers marked for approval have been finalized and are ready for your review. Please download the complete documentation package, which includes all signed agreements, updated W-9 forms, and current Certificates of Insurance (COI). All files have been compiled into a single file for your convenience. Should you require any clarification regarding these documents, please don’t hesitate to reach out. Thank you. |
||
| Do Not Share This Email This email contains a secure DocuSign link. Do not share it.Alternate Signing Method Visit docusign.com and enter code: EC58F45534624BA28B6853A8C0A05FE73About DocuSign Secure, legally binding electronic signatures in minutes. |
TIPS
In this case, I actually followed my own advice as to never click on a link regardless of how legitimate the email or text message may appear until confirming that the message is legitimate. In this case I didn’t even need to confirm that it was not legitimate because of the telltale evidence of the email address of the sender.
The lesson here is clear. You can never be sure when you receive an email as to who is really contacting you. Although sometimes it is obvious when the email address of the sender does not correspond to who is represented as sending the email, other times the email account of someone or some company you trust could have been hacked and used to send you the malware. Therefore you should never click on a link or download an attachment in an email until you have absolutely and independently confirmed that it is legitimate.
If you are not a subscriber to Scamicide.com and would like to receive free daily emails with the Scam of the day, all you need to do is sign up for free using this link. https://scamicide.com/scam-of-the-day/
Scam of the day – June 11, 2026 – SIM Swaps Put You in Danger
Recently, Patricia Escriva was shocked to see that she had lost control of her cell phone and that scammers had emptied her bank account of $18,000. What made this more troubling was that her account was protected by dual factor authentication. She was the victim of a SIM swap. A Subscriber Identity Module, more commonly known as a SIM card, is an integrated circuit that stores information used to authenticate subscribers on mobile devices, such as a cell phone. The SIM card is able to be transferred between different devices, and often is, when people update into a newer cell phone. SIM Swapping is the name for the crime where someone convinces your phone carrier to transfer your SIM card to a phone controlled by the criminal.
Identity thieves with access to their victims’ SIM cards are increasingly becoming able to intercept security codes sent by text messages for online banking as part of dual factor authentication and thereby providing the identity thief with the opportunity to empty their victims’ bank accounts and cause other financial havoc. Passwords may be compromised in data breaches or otherwise become known to scammers, but so long as dual factor authentication is used, a scammer should not be able to access the account unless dual factor authentication is thwarted by a SIM swap.
The best thing you can do to protect your SIM card from SIM swapping is to set up a PIN or password to be used for access to your mobile service provider account. This will help prevent a criminal from calling your carrier posing as you and convincing your mobile carrier to swap your SIM card to the criminal’s phone merely by providing personal identifying information or answering a security question.
TIPS
I have written in the past about how to avoid SIM swaps by setting up a passcode or PIN on your mobile service carrier account to avoid a scammer being able to access the account merely by answering a security question.
AT&T will allow you to set up a passcode for your account that is different from the password that you use to log into your account online. Without this passcode, AT&T will not swap your SIM card. Here is a link with instructions as to how to set up the passcode. https://www.att.com/esupport/article.html#!/wireless/KM1051397?gsi=9bi24i
Verizon enables customers to set up a PIN or password to be used for purposes of authentication when they contact a call center. Here is a link with information and instructions for setting up a PIN with Verizon. https://www.verizonwireless.com/support/account-pin-faqs/
T-Mobile will allow you to set up a passcode that is different from the one you use to access your account online. This new passcode is used when changes to your account are attempted to be made such as swapping a SIM card. This code will not only protect you from criminals attempting to call T-Mobile and swap your SIM card, but will also prevent someone with a fake ID from making changes to your account at a T-Mobile store. Here is a link to information and instructions for adding a new passcode to your account. https://www.t-mobile.com/customers/secure
And if you are particularly paranoid, like me, you can arrange with your cell phone service carrier that your SIM card cannot be switched except in person by you.
It is important to note that a SIM swap can only be done if the scammer knows the targeted victim’s cell phone number which is a reason for keeping your cell phone number private. See the Scam of the day for September 29, 2025 for more information about keeping your cell phone number private.
If you are not a subscriber to Scamicide.com and would like to receive free daily emails with the Scam of the day, all you need to do is to go to the bottom of the initial page of http://www.scamicide.com and type in your email address in the tab that states “Sign up for this blog.”
Scam of the day – June 10, 2026 – Car Rental Scams
Since 2019, the cost of renting a car on vacation has increased dramatically. However, scammers are more than willing to help you out. They are setting up phony car rental company websites and websites that appear to be those of legitimate car rental companies such as Avis or Hertz.
Often these phony websites appear high on a Google or other search engine search because the more sophisticated scammers are able to manipulate the algorithms used by search engines to position a website high in a search result. In other instances, the scammers take out ads for their phony websites that place them at the top of the first page in a Google or other search engine search. Victims of this scam are finding themselves without a car and losing the money they paid for the non-existent car rental.
TIPS
Through the use of AI, the phony websites can look quite legitimate and be hard to distinguish from the websites of real car rental companies. Always check the URL of the website you use carefully before responding to an offer for a car rental. You also may want to go the extra step and actually do a search to determine who owns the website you are on. There are a number of ways of doing this. One of the easiest is to go to ICANN and enter the domain name and click on “lookup.” This will enable you to find out who actually owns the website. So for instance, if you think you are renting from Hertz and the website you are on is owned by someone in Nigeria, you can be pretty confident it is a scam. Here is the link to ICANN https://lookup.icann.org/
One of the primary ways of knowing that you are dealing with a scammer is that often they ask for payment through gift cards. Gift cards are a favorite means of payment for scammers because once you give the scammer the gift card numbers over the phone or the Internet, the money is gone and cannot be easily traced or recovered. Some scammers tell you that you will get a special low rate on your car rental if you use a gift card. Legitimate companies never ask for payment by way of gift cards so anytime you are asked for payment through a gift card, you can be sure it is a scam. Asking for payment by Zelle or Venmo is also a good indication that it is a scam.
If you are not a subscriber to Scamicide.com and would like to receive daily emails with the Scam of the day, all you need to do is sign up for free using this link. https://scamicide.com/scam-of-the-day/