HOLIDAY SCAM– Fake Shipping Notification

Christmas is coming and we are all anxious to have packages arrive to our loved ones before the big day. But scammers continue to take advantage of our concern by sending phishing emails and texts, as the Better Business Bureau recently warned the public (https://www.bbb.org/article/scams/16460-scam-alert-shipping-trick-fools-holiday-shoppers).  

We are all susceptible to receiving phishing messages. This morning I receive the following email in my inbox:

 

 

 

While this one is easy to spot as a scam, if you were hoping that a package that you had sent through the U.S. Postal Service would arrive at its destination on time you might jump to clicking on the suggested link to “enter your correct address and pay the new shipping costs (1.60 USD) …”

By taking a breath and checking out the email, you can easily find the fishy parts of it. First, the from email address is from a “freshesk.com” with words like “support” and “newaccount” embedded in the email address. This is not an address from “usps.com.”

At the bottom, is an email address listed from a “hotmail.com” account. “Official” messages from Hotmail accounts should be considered suspicious on their face.

And finally, on hovering the cursor over the “COMPLETE DELIVERY” link reveals another dodgy web address.

The logic of the email is suspect if you take a few moments to think about it. The Postal Service does not send emails or text messages for individual parcels sent through their system. If you send a package via Priority Mail Express, Priority Mail, First-Class Package Service, or Retail Ground, USPS Tracking is included. The package is assigned a tracking number which you can use to track its progress through the USPS web site.

The suggestion that an additional charge is needed to correct the address delivery probably is an attempt to collect your credit card information for spurious charges later on.

As with most phishing emails and texts, this email hopes that it looks authoritative and official enough that you will act without thinking. While most of us probably understand, being aware that this scam is going around will help you to prevent this scam from harming you. And passing this information to your friends and family will help them to protect themselves.

 

 

 

 

 

USPS:

https://faq.usps.com/s/article/Scams-Scheme-Alerts

 

USPS information on tracking a package:

https://tools.usps.com/go/TrackConfirmAction_input?_gl=1*xbwkgj*_ga*MTczMDc2Njg2MS4xNjM4NzM4Nzcx*_ga_3NXP3C8S9V*MTYzOTk1MTU3MS41LjEuMTYzOTk1MzI4NC4w

https://www.usps.com/ship/mail-shipping-services.htm

AARP Fraud Watch Network:

https://www.aarp.org/money/scams-fraud/info-2019/package.html?intcmp=AE-FWN-LIB3-POS7

 

 

DRUNK DRIVING – An Inside Look

Local law enforcement agencies always encourage citizens to not drink and drive. They do not want to see the damage and carnage that can occur if a drunk driver takes to the streets.

The same is true for Canadian police agencies. Recently the Burnaby RCMP unit (Burnaby is east of Vancouver B.C.) released a dash cam video from a vehicle driven by a drunk driver, showing the damage to other vehicles, signs, and one fire hydrant as it occurred. It also shows the driver running a red light and a stop sign. According to the CBC, while no one was hurt or killed, property damage amounted to $35,000 in Canadian dollars. That is $27,382 in U.S. dollars!

You do not want to be responsible for property damage like occurred on the night this driver was on the road. So, if you are partying over this holiday period, make arrangements for someone to help you by being your designated driver and taking you home.

Check out the video below embedded in this CBC article,

 

CBC:

https://www.cbc.ca/news/canada/british-columbia/impaired-driving-dangers-1.6280972

 

WINTER DRIVING – Tips for Safe Winter Driving

With the first snows of the winter in our mountain passes, drivers will need to take care if they are driving over any of our mountain passes. And while the short-term weather forecast does not predict an accumulation of snow in the lowlands, temperatures have lowered into the 30’s.

The Washington State Department of Transportation (WSDOT) has some winter driving tips for you if you do plan to drive over the passes during this winter season,

·         Be sure to check pass conditions online before heading out at https://wsdot.com/travel/real-time/mountainpasses.

·         Drive for the conditions: slow down, leave extra space between you and the vehicles in front of you, give yourself more time and space to stop.

·         Be sure to have traction tires and chains with you.

·         Do not use cruise control.

·         Slow down when approaching intersections, offramps, bridges, or shady areas.

·         Behind a snowplow, slow down and give it a little extra room.

 

For more information about winter driving, checkout the following WSDOT web pages,

 

Washington State Department of Transportation:

https://wsdot.com/travel/real-time/mountainpasses/winterdrivingtips

https://wsdot.com/travel/real-time/mountainpasses

PACKAGE THEFT – Everett PD Sees Change in Tactics

Earlier this week, KIRO TV reported that the Everett Police Department (EPD) is seeing a change in how porch pirates operate.

Often in the past, porch pirates would take a package on a porch as soon as they see it. Most recently though, EPD has noticed that pirates are taking longer to pick up packages. They may survey a neighborhood for packages then return an hour later to pick them up. Doing this may give them a better sense if people are watching. Criminals don’t want to get caught. Being more cautious may help them not be noticed by the neighbors.

Another way that Everett PD has seen porch pirates try to keep from arousing suspicions is by masquerading as delivery drivers.

KIRO TV says that Everett PD has stepped up patrols to catch porch pirates. This includes using dummy packages that can help the police department capture suspects.

Also, the Snohomish County Sheriff’s Office has asked for help from the people who have had packages stolen from their porches. Please fill out an online report at https://www.mycrimereport.us/.

 

 

KIRO TV:

https://www.kiro7.com/news/local/video-police-say-porch-pirates-are-waiting-patiently-looking-packages/55680b35-cec3-407d-bfb6-d6ef58fb612f/

 

Everett Police Department:

https://everettwa.gov/DocumentCenter/View/15845/Package-Theft-Prevention

 

Snohomish County Sheriff’s Office:

https://www.facebook.com/photo/?fbid=266606635492775&set=a.226070289546410

Seattle PI:

https://www.seattlepi.com/local/seattlenews/article/seattle-ranks-fourth-in-us-for-package-thefts-2021-16653781.php

 

 

SNOHOMISH COUNTY SHERIFF’S OFFICE – Asks for Help to Catch Porch Pirates

On Friday, the Snohomish County Sheriff’s Office asked for help from the public to catch reported porch pirates.

In its posting, on Facebook and Twitter, the Sheriff’s Office noted that it had received several reports of package thefts during the week. The Sheriff’s Office said that it is actively investigating the reports and has suspects who it is investigating.

The Sheriff’s Office requested that anyone who has had a package stolen fill out an online report at https://www.mycrimereport.us/. And, if you have video of the theft to call the non-emergency number, (425) 407-3999, to report the theft. Please let the call taker know that you have video of the incident.

Package theft has become an increasing problem as we have relied on online shopping more over the years due to its convenience and particularly since the beginning of the COVID-19 pandemic. The holiday season is a time of year when package theft prevention receives emphasis, but package theft has become a year-round problem.

While there has been no magic technique to prevent package theft, there are things you can do to reduce the chances of your package being stolen from your front porch. Here is a reminder of actions you can take,

• Ask a trusted neighbor to pick up your package after delivery.
• Track the package’s progress online. Then you know when it is delivered.
• Ask to have the package placed on the back porch or out of sight on the front porch.
• Have the package delivered to a nearby UPS or FedEx package store or where you work. Amazon also has lockers at select locations where you can have it delivered.
• Install a camera that covers your front porch. Make it visible to discourage potential package thieves. A warning sign may also help.
• Consider a device to protect your packages such as a locking box.
• Request a signature on delivery. That way the delivery driver hands you the package after they have received a signature. If you are not at home, they will return on another day, or you can pick up the package at their delivery facility.
• Participate in Neighborhood Watch. Encourage your neighbors who stay at home to watch out for suspicious activity such as vehicle following UPS, FedEx, Amazon, or Postal Service delivery vehicles.

 

The fact that the Sheriff’s Office is seeking video shows that it is an important tool that detectives can use to investigate package theft. Letting the Sheriff’s Office know if you are victimized can help them apprehend the suspects.

 

 

 

 

 

Snohomish County Sheriff’s Office:

https://www.facebook.com/photo/?fbid=266606635492775&set=a.226070289546410

Seattle PI:

https://www.seattlepi.com/local/seattlenews/article/seattle-ranks-fourth-in-us-for-package-thefts-2021-16653781.php

 

 

SNOHOMISH COUNTY SHERIFF’S OFFICE – Contributing to Community Services Fair

On Wednesday, December 1^st, the Snohomish County Sheriff’s Office, Office of Neighborhoods deputies and social workers along with the Volunteers of America and representatives from the Job Corps held a Community Services Fair in the parking lot of the Safeway at 128^th St SW and 4^th Ave W.

Volunteers of America offered rental assistance. Job Corps representatives offered vocational training to people ages 16 to 24. Office of Neighborhood deputies and social workers were available to give assistance to homeless people.

Volunteers of America operate the 211-referral service for all of Washington State. The North Sound Region includes Snohomish, Skagit, Whatcom, Island, and San Juan counties. The North Region provides enhanced services for Homeless Coordinated Entry, Community Resource Advocates, Mass Fatality Planning, and Emergency Rental Assistance. Other services that 211 can help you with include Disabilities, Domestic Violence, Education, Employment, Financial Aid, Food, Health Care, Personal/Household Items, Shelter/Housing, and Transportation. Call 211 for confidential help.

The Job Corps is a federal vocational tuition free training program for young people 16 to 24 that that also provides housing, meals, basic medical care, hands-on training, and preparation for a career. The Job Corps started in 1964. The nearest Job Corps Center is located in Sedro-Woolley.  

The Snohomish County Sheriff’s Office’s Office of Neighborhoods Homeless Outreach consists of teams of deputies and social workers who connect with homeless and vulnerable populations to help individuals break the cycle of homelessness, mental health issues, and/or chemical dependency. The teams develop long term relationships with individuals in order to offer help with navigating social and health services. The goal is to lessen the likelihood of re-offending, contact with law enforcement, or incarceration.

For more information about the services check out the links below:

 

Volunteers of America/211:

https://wa211.org/

 

Job Corps:

https://www.jobcorps.gov/

Adams and Associates- https://adamsaai.com/job_corps/cascades-washington/

 

Office of Neighborhoods:

https://www.snohomishcountywa.gov/311/Office-of-Neighborhoods

 

 

 

 

HOLIDAY SCAMS – BBB’s 12 Scams of Christmas

Scammers want your money or your personal information. The Christmas holiday season gives them plenty of opportunity to collect both. Recently, the Better Business Bureau (BBB) published the 12 top holiday scams that it has observed. A short summary of each follows. For more information about each, check out the link to the BBB posting below.

1.      Misleading Social Media Ads. The BBB reports that this is the most reported scam on its Scam Tracker service. Scammers have been using social media to pose as a small business with items for sale or an offer of a free trial. People complain that they pay for items that they never receive. Or they get charged for a “free trial” that they never signed up for. Other complaints include receiving counterfeit products or products different from what they ordered.  BBB recommends checking out businesses before doing business with them. You can look up businesses at www.BBB.org or do a web search on the business name (business name with the word scam or complaints).

2.      Gift Exchanges. The latest version of this scam is about exchanging bottles of wine. Another version suggests purchasing $10 gifts online. And there is a version that encourages you to add your email address to a list where participants pick a name and send money to strangers to “pay it forward.” The gift exchange scams are a good way to collect your personal information as well as the personal information of your family and friends. And, the BBB points out, they are illegal pyramid schemes.

3.      Holiday Apps. Holiday apps offer experiences such as live video chats with Santa for children, lighting a menorah, watching Santa feed live reindeer, tracking Santa’s sleigh on Christmas Eve, or sending holiday wish lists to Santa. Scammers can set up apps to collect your personal information or make offers to take your money. Review app privacy policies. Free apps can contain more advertising than apps that require a fee. Also, be wary of free apps since they can contain malware.

4.      Alerts About Compromised Accounts. Scammers often send text messages, emails, or make phone calls posing as a bank, Amazon, Paypal, etc. claiming that they have detected suspicious activity on your account. You are encouraged to contact the business by clicking on a link or calling an included number. DO NOT click on the included link or call the phone number. If you want to check out the claim, call the business by looking up their number with a web search, on a bill or statement, or on the back of its credit/debit card.

5.      Free Gift Cards. Scammers send phishing emails claiming that you are eligible for free gift cards or have been selected to receive free gift cards. All you have to do is to give them some of your personal information. The scammers often impersonate legitimate businesses such as Starbucks. They also use pop-up ads and text messages. The best approach is to ignore unsolicited emails or text such as this.

6.      Temporary Holiday Jobs. Many businesses are looking for holiday workers. However, scammers use the lure of a temporary holiday job to collect personal information or to steal your money. Be wary of any job offer that seems too good to be true, or that charges you to apply for the job.

7.      Look-alike Websites. Scammers often impersonate legitimate businesses and governmental agencies. They can build a website that looks just like a real company’s website or send a phishing email that looks like it is from an authentic business. When navigating to a company’s website, be sure to check out the web address to be sure it is authentic. Before clicking on any links in an email, hover your cursor over the link to see the real web address of the link.

8.      Fake Charities. The holidays are a prime time for scammers to impersonate charities as we all think about giving to those in need. The BBB recommends avoiding quick decisions to give to any charity. It also recommends that you check out a charity before giving. You can look up charities at the BBB’s www.give.org website or the Washington State Secretary of State’s Corporations and Charities Division’s website-  https://ccfs.sos.wa.gov/#/.

9.      Fake Shipping Notifications. With the high traffic of packages being shipped in this holiday season, scammers are sending out phishing emails and text messages claiming that there is a problem with your shipment and to clear it up you need to click on the link. Instead of clicking on the link in the email or text message, go directly to the web site of the shipper.

10.  Pop Up Holiday Virtual Events. Many holiday markets or craft fairs have migrated online. Scammers create fake events or impersonate real events with fake web pages, social media posts, and emails. They may charge admission for what is normally a free event. Check any web addresses for their legitimacy. If you see an event that used to be free charging admission, ask the real-life organizer if they are really charging a fee.

11.  Top Holiday Wishlist Items. With the current supply chain problems, highly popular gifts will be more difficult to find. Scammers take advantage of the situation by claiming they have scarce gifts and even may claim to charge a price that is too good to be true.

12.  Puppy Scams. Puppies were popular during the pandemic. And puppy scams were just a popular with fraudsters. Be sure that you can see the prospective pet in person before buying.

 

 

 

 

Better Business Bureau:

https://www.bbb.org/article/news-releases/23497-the-naughty-list-bbbs-12-scams-of-christmas

https://www.bbb.org/article/news-releases/26193-bbb-study-online-shopping-scams-flourish-on-social-media-during-pandemic

https://www.bbb.org/article/scams/21097-scam-alert-tracking-code-trick-costs-online-shoppers

 

Seattle Times:

https://www.seattletimes.com/seattle-news/tis-the-season-of-giving-heres-how-to-avoid-charity-scams-in-washington-state/

 

Washington State Secretary of State:

https://www.sos.wa.gov/charities/

 

 

BANK TEXT MESSAGE SCAM – A Different Trick to Take Over Your Account

Last week, I published a warning about a text message scam impersonating BECU:

TEXT MESSAGE SCAM – Fraudsters Impersonate BECU- https://ssnoccrimewatch.blogspot.com/2021/11/text-message-scam-fraudsters.html.

Krebs on Security has published articles about a twist to this theme.

Like the BECU scam, the scammers send out text messages, claiming to be from a financial institution, with a warning about a suspicious transaction. Here is an example of a scam message:

“Free Msg- J.P Morgan Chase Bank Alert-Did You Attempt A Zelle Payment For The Amount of $5,000.00? Reply YES or NO Or 1 To Decline Fraud Alerts.”

Zelle is a peer-to-peer payment service that advertises fast payments that you can make to your friends or associates. Zelle is offered as a service by many banks and credit unions.

In this case, the supposed J.P. Morgan Chase Bank is asking you about a specific transaction. Instead of asking you to click on a link, it asks you to reply, Yes or No. After you respond (with a Yes or No), you will receive a phone call from a scammer pretending to be from the fraud department. The scammer will want to “verify” your identity. What they request as verification is your account username. Then, the scammer asks you to read the passcode that was just sent to you via text or email.

This tactic takes advantage of the “forgotten password” feature that most websites with accounts have. This is the feature where if you have forgotten the password to your account, you enter your username, then the account sends you a temporary password. Then you can enter your account and change your password to one that only you know. The scammer, after you give him your username, enters it then the account sends you the temporary password. After you give the scammer the temporary password, the scammer enters it taking control of your account.

The scammer uses Zelle to transfer funds to other people.

You may think that since you gave the scammer information allowing him to enter your account that you do not have any protection. However, according to the Consumer Financial Protection Bureau, this amounts to an unauthorized transaction since the scammer received the username and password through fraud.

Legitimate financial institutions do send out text messages notifying or querying their customers about suspicious transactions. So, if your bank or credit card company uses text messages as an anti-fraud technique, it could be difficult to determine the fraudulent texts from the genuine texts.

Krebs on Security has a simple mantra to follow: Hang up, Look Up, and Call Back,

Hang Up- If you receive a call warning about fraud, hang up. Likewise, if you receive a text or an email warning about fraud, do not click on any links or respond.

Look Up- If you think the call or text might be legitimate, look up the number for customer service on the back of your credit card, on a copy of the account monthly statement, or with a web search. DO NOT USE ANY PHONE NUMBERS OR LINKS PROVIDED BY THE SUSPICIOUS PHONE CALL, TEXT, OR EMAIL!

Call Back- Call the institution and ask if they were trying to contact you.

 

 

Krebs on Security:

https://krebsonsecurity.com/2021/11/the-zelle-fraud-scam-how-it-works-how-to-fight-back/

https://krebsonsecurity.com/2021/11/sms-about-bank-fraud-as-a-pretext-for-voice-phishing/

 

Consumer Financial Protection Bureau:

https://www.consumerfinance.gov/compliance/compliance-resources/deposit-accounts-resources/electronic-fund-transfers/electronic-fund-transfers-faqs/

 

Zelle:

https://www.zellepay.com/

 

 

SNOHOMISH COUNTY SHERIFF’S OFFICE – Holiday Crime Prevention Newsletter

The latest issue of the Snohomish County Sheriff’s Office’s crime prevention newsletter, “Partners in Crime Prevention” is now available. This issue has tips on safe online shopping, protecting yourself from online scams, preventing package theft, and how to protect your presents at home.

 

 

 

Snohomish County Sheriff’s Office:

https://www.snohomishcountywa.gov/ArchiveCenter/ViewFile/Item/6744

TEXT MESSAGE SCAM – Fraudsters Impersonate BECU

This morning, I received the following text message on my phone purportedly from the Boeing Employees Credit Union (BECU):

 

“FRM:BECU-BANK MSG:We discovered unusual updates on your Account that we believe may be unauthorized, secure account below:…”

 

It included a link to go to. Before clicking the link, I checked the BECU website (which I found with a web search) and found a posting, dated in April 2021 about just this type of text message scam. It points out that SMS text messages like the one above continues to be sent out by scammers. BECU says that their goal is to access your BECU account.

BECU emphasizes that they will not ask for your Online Banking User ID, Online Banking Password, and they will not include a link in any text messages that they might send you. They say that the purpose of the link is to direct you to enter your User ID and password. This is a classic example of a phishing text message.

BECU does say that it monitors members’ accounts for suspicious activity and may send a text message, email, or automated phone call if they suspect suspicious activity on your account. They explain that a text message may ask for a simple YES or NO for a response, or it may ask you to call the BECU servicing number on the back of your credit/debit card to verify account usage.

It also warns that some scammers are using the names and locations of actual BECU employees.

If you are victimized by a scammer on your BECU account, BECU wants to know. You can call them at (800) 233-2328 or visit any BECU location.

As far as the text message, I did not click the link and I blocked the number on my smartphone.

 

 

Boeing Employees Credit Union:

https://www.becu.org/news/2021/Apr/fraud-alert-phishing-scams

 

WASHINGTON STATE – Attorney General Issues Data Breach Report

The Washington State Attorney General’s Office (AGO) recently released its latest annual Data Breach Report showing that data breaches affecting Washington State residents skyrocketed to 280 breaches in 2021, a 500% increase over last year’s 60 breaches.

We often hear about scams and frauds that target individuals through robocalls, email, and text messages. The goal of the scammers is to steal your money and to get your personal information that they can use in fraud schemes or sell on the dark web to other scammers.

Data breaches often have similar goals, but target personal information held by organizations such as businesses, educational organizations, health organizations, financial institutions, and governments. The hackers target organization databases that hold client, customer, or patient personal information to use in their own fraud schemes or to sell on the dark web. Since this is information about you that is held by someone else, we all have to rely on the organization to secure the privacy of our information.

The Attorney General’s Office defines a data breach as “…the unauthorized acquisition of data that compromises the security, confidentiality, or integrity of personal information maintained by a person, business, or agency.” The Attorney General’s report defines personal information as an individual’s first name or first initial and last name with a Social Security number, driver’s license number or Washington ID card number, account number or credit card or debit card number, student, military, or passport ID numbers, health insurance policy or ID numbers, full date of birth, private keys for an electronic signature, medical information, including medical history, mental or physical condition, diagnoses, or treatments, biometric data, username/email address with a password or security questions and answers.

The AGO looks at three sources of a data breach:

·         Cyberattack is where a hacker accesses secure data on a computer system. Cyberattacks constituted 87.5% of all reported data breaches in 2021 up from 63% in 2020. Of the methods of cyberattack, ransomware amounted to more than half of the cyberattacks in 2021- 150 of the total of 245 cyberattacks. Other methods of cyberattack include skimmers, spyware, and phishing email.

·         Unauthorized access is where an unauthorized person accesses secure data through an unsecured network or sift through sensitive documents on a desk. This method amounted to 7.5% of all cyberattacks.

·         Theft or mistake is where a clerical error mistakenly sends sensitive data to the wrong recipient or a laptop with sensitive data is stolen. Theft or mistake made up 5% of all cyberattacks.

Three entities bear responsibility for protecting personal information, holding cyber criminals accountable for their crimes, or blocking cybercriminals from successfully using personal information.

A business, government, financial organization, etc. needs to take actions to protect the data. Protecting personal information can be challenging as cybercriminals become more sophisticated in their attacks. But not assembling an effective cybersecurity team to plug security holes in a computer system and to keep up to date on the latest cybercriminal trends is inexcusable.

Governments are the best organizations to hold cybercriminals accountable for their crimes. But cybercrime is in the wild west of law enforcement. The federal government is probably the best governmental level to handle cybercrime cases since cybercriminals operate between state boundaries and country boundaries. However, since many cybercriminals operated beyond U.S. borders, the federal government needs the cooperation of other countries to suppress cyber criminal activity. The federal government is making efforts to protect personal data held in the U.S. as shown in this Associated Press article- https://apnews.com/article/technology-russia-crime-arrests-hacking-f0adf6f0765b0f079a20a95cf85c5334, but there remain many challenges to holding cybercriminals accountable.

As individuals there are actions that we can take to protect ourselves.

Some general things include,

·         Using strong passwords and storing them in a password manager/vault such as LastPass or 1Password. Also be sure NOT to use the same password for multiple accounts.

·         Use multifactor authentication (also known as 2 factor authentication) whenever you can. Here is a good explanation of multifactor authentication- https://askleo.com/two-factor-authentication/.

·         Use security software to keep malware off of your devices. Also, keep the software on your devices up to date with the latest security updates.

·         Watch out for phishing emails or texts. Phishing is a leading technique by cybercriminals to insert malware and steal data in computer systems.

If you are notified that your personal information may have been compromised in a data breach, you should be proactive. Some actions to take that the AGO recommends include,

·         Check your credit report, which you can obtain from one of the three credit bureaus (Experian, TransUnion, and Equifax).

·         Report the identity theft to the Federal Trade Commission (FTC) at https://www.identitytheft.gov/#/. This web site will take your report and will help you develop a plan to recover from the theft.

·         File a report with your local police department.

·         Send a copy of the police department to each of the three credit bureaus.

·         Ask the business that sent you the data breach notice to give you information about transactions made in your name. The AGO has a template for a letter that you can use at this link- https://view.officeapps.live.com/op/view.aspx?src=https%3A%2F%2Fagportal-s3bucket.s3.amazonaws.com%2Fuploadedfiles%2FHome%2FSafeguarding_Consumers%2FConsumer_Issues_A-Z%2FIdentity_Theft_(Privacy)%2FSample-Letter-for-ID-Theft-Victims-to-Request-Records.doc&wdOrigin=BROWSELINK

Depending what information was compromised in the data breach you may need to take additional steps. The Identity Theft Resource Center has recommendations at this link- https://helpcenter.idtheftcenter.org/s/article/What-to-do-If-You-Receive-a-Data-Breach-Notification

 

 

 

Washington State Attorney General’s Office:

https://www.atg.wa.gov/news/news-releases/ag-data-breach-report-2021-sets-new-record-number-data-breaches-and-ransomware

https://agportal-s3bucket.s3.amazonaws.com/2021%20Data%20Breach%20Report.pdf

 

The Seattle Times:

https://www.seattletimes.com/seattle-news/washington-sets-record-for-data-breaches-and-ransomware-attacks-says-ag-ferguson/

 

KIRO TV:

https://www.kiro7.com/news/jesse-jones/2021-data-breaches-just-keep-coming/LABPLG5GS5AOHJHJ4HDK6TWA5Q/

 

 

AMAZON SCAM – Scammers Trick You into Giving Them Money

You receive a phone call, email, or text message from someone, claiming to be from Amazon, about suspicious activity or unauthorized purchases made against your account. If you call the number given, the phony Amazon representative will trick you into giving them control over your computer or device so that they can give you a refund.

From here they pull an old trick. They “accidentally” add some extra zeros, overpaying you. Then they ask you to return the difference.

To make this ruse more convincing, while they are in your computer, they may access your online banking account, move the amount from your savings account to your checking account. And when you look at your checking account, you see the “deposit” and you assume you got your refund.

The Federal Trade Commission (FTC), which reported this scam, says that about 35% of people who report a business impersonator scam, reported that the impersonator claimed to be from Amazon. And, over the past year, Amazon impersonators seem to be harming older people over 60. According to the FTC, older people are four times more likely than younger people to report losing money to an Amazon impersonator.

For most of us, we realize that a vendor has a way to refund or credit our credit card accounts without going into our computers. But depending on our stresses at any moment, this might be a compelling situation to comply with a stranger. Remember, do not let anyone who has unexpectedly contacted you to control your computer.

Some other tips include,

·         Never call phone numbers included in unsolicited phone calls, emails, or text messages. If you want to check your account or ask a company representative about your account, look up the company’s web address and/or phone number with a web search.

·         DO NOT PAY FOR FEES OR OTHER CHARGES WITH A GIFT CARD! Especially when a stranger contacts you out of the blue.

·         If you receive a phone call, text, or email from an Amazon impersonator, tell your family and friends. The more people who know about the scam, the more people will be on guard against it.

·         And, if you receive a call from an Amazon impersonator, tell the FTC at https://reportfraud.ftc.gov/#/?pid=A

 

 

Federal Trade Commission:

https://www.ftc.gov/news-events/blogs/data-spotlight/2021/10/amazon-tops-list-impersonated-businesses

 

Amazon- Here is a search result on the Amazon website about scams:

https://www.amazon.com/gp/help/customer/display.html?help_keywords=scams&search=true&nodeId=G508510&kwHidden=true&sprefix=scams%2Cscams%2C0&locale=en_US&ref_=hp_search_rd_gw

 

 

UTILITY SCAMS – Puget Sound Energy Issues a Warning

Puget Sound energy (PSE) has issued a warning about a series of scams that it has observed recently. As PSE points out on its web page, the scams include,

·         Scammers calling customers stating they have an overpayment, but need bank information to issue a refund. PSE will not ask for your bank information. Any refund will be credited to your account.

·         Scammers going door-to-door offering to restore power for a fee, or asking if your power is out. This is NOT something PSE workers would do.

·         Phone calls using “spoofing technology” that displays Puget Sound Energy’s name and phone number when they call to threaten disconnection of service—usually within 30 minutes—if immediate payment is not made with a prepaid debit or money card.

·         A caller, falsely claiming to be from Puget Sound Energy, leaves a message to call back a number, usually an unfamiliar 1-800 or area code number.

 

PSE reminds everyone that it will never require customers with delinquent accounts to use prepaid debit cards to pay their debt and avoid disconnection. PSE will send multiple notifications about the delinquent account by mail and phone for several weeks before disconnecting service.

It also encourages its customers to report scammers impersonating PSE personnel to its Customer Service number- (888) 225-5773. And to report utility scams to,

 

The Washington State Attorney General’s Office

https://www.atg.wa.gov/file-complaint#Online

 

Federal Trade Commission

https://reportfraud.ftc.gov/#/

 

Snohomish County PUD is also concerned about utility scams. While it does not any recent scam alerts, the following pop up shows up on your screen when you open their web site:

 

 

Utility scams remain a favorite tactic by scammers to get your money and your personal information. Be skeptical of anyone who tries to pressure you into giving them money with a prepaid gift card, wire transfer, or crypto currency. As suggested, call your utility to report the scam. Look up its number on the utility’s web site or utility bill. Do not use any phone numbers to you by the scammer.

 

Puget Sound Energy:

https://www.pse.com/pages/scam-alerts

 

Snohomish County PUD #1:

https://www.snopud.com/AboutUs/scams.ashx?p=1786