How Does an Impersonation Scam Work?
Impersonation scams may target you as an individual, or seek to capture sensitive information about a company you own or work for. These scams are often elaborate and may target you via email, text message, social media or phone call, as criminals try to con you for money or sensitive information. Scammers may also try to plant malware in your computer, smartphone or another electronic device to make it easy to steal data from you without your knowledge in the future. Regardless of their tactics, the bottom line is scammers are attempting to get some kind of advantage on you that they can exploit.
Since there are so many types of impersonation scams, we’ll review the methods and tips to help you avoid falling for them below.
How to Not Fall for Email Scams
Phishing emails are among the most common scams, and they can be easy to fall for. Phishing emails are designed to trick their recipients into turning over sensitive information — such as your checking account information or social security number. There are also pharming scams, which is when someone attempts to place malware, or some type of malicious code, in an electronic device you use.
Phishing and pharming emails can be disguised to look like they are coming from a reputable company, or they can be bulk emails sent out that are easy to spot and know they are fraudulent. You should never click on attachments in emails from sources you aren’t sure about. You also shouldn’t respond to these emails. Just delete them from your inbox.
Nothing will help you avoid these threats more than knowing what to watch out for, but there are tools that can help you avoid falling prey to email scams, which include:
- Use multi-factor authentication on your devices. Using this technology means you have to go through an extra step to log into your online accounts or websites you use that contain sensitive information — like online banking and bill paying. For instance, you may be texted a code to a registered device to confirm your identity, or maybe you have to enter a PIN or answer a security question.
- Keep your smartphone’s software up to date. Many of us use our smartphones now more often than laptops, desktops or tablets. This makes it critical to make sure you’re keeping your system up to date and secure. You don’t want to access your emails or sensitive information while using outdated apps or an old version of your phone’s operating system.
- Use security software. You can eliminate many security threats with proven antivirus software. Get a subscription that will help protect your emails and your web presence.
- Back up your data — often. Despite your best efforts, should the worst happen you want a recent point you can go back to to make your recovery efforts simpler.
How to Avoid Phone Scammers
The easiest way to avoid a phone scammer is to not pick up calls from numbers you don’t recognize. Phone scammers can target you by calling directly, using robocalls, by spoofing legitimate numbers or a combination of the two. If it’s a legitimate call that’s important, the caller will leave you a message and you can always connect with them later. If you do answer a call from an unknown number, hang up immediately if anything seems suspicious. These types of criminals often pretend to work at real companies, and they offer detailed backstories and may have knowledge of your activity with the legitimate company so you should even be wary of what your phone’s caller ID says, as information can be spoofed to make these scammers seem legitimate.
No matter what, if you answer an unsolicited call you should never give out any personal or company information. This means do not give out your address, last four digits of your social security number, or other sensitive details. Again, don’t give out any personal or sensitive information — no matter how legitimate they seem.
Scams that target you via text message work similarly to email scams. The best way to avoid falling prey to these attacks is to never click on links sent to you from a phone number you do not recognize.
Don’t Fall for Bank Impersonation Scams
A bank impersonation scam is when someone reaches out pretending to work at a credit union or bank you use. Most of these scams are executed to either steal your credit or debit card information, get you to hand over money, or to get around your credit union or bank’s security protections to access your accounts directly. Many bank impersonation scams are disguised as the following:
- Suspicious activity or fraud alerts
- Program enrollment
- Device, technical or account access issues
- Signing up for special promotions and limited-time offers
To avoid falling prey to a bank impersonation scam, do not share sensitive information. DCU, and other credit unions and banks do not reach out to their members on an unsolicited basis asking for sensitive information, such as usernames, passwords or PINs.
Additional Resources From DCU
For more consumer education, check out our Fraud and Security Resources. Learn more tips, and explore how DCU works tirelessly around the clock to protect our members’ financial data, and what to do should the worst occur. We also invite you to check out our simple guide for what to watch for regarding phishing and pharming scams.
Our not-for-profit credit union uses all available tools to secure your banking information, but should you fall victim to an impersonation scam and encounter fraudulent activity related to your DCU account, contact our fraud department by calling 800.328.8797 right away.
This article is for informational purposes only. It is not intended to serve as legal, financial, investment or tax advice or indicate that a specific DCU product or service is right for you. For specific advice about your unique circumstances, you may wish to consult a financial professional.
