A Consumer Action News Alert • February 2022
www.consumer-action.org
  Know-it-alls  
 

What exactly is a scam? A series of columns in the New York Times by Tressie McMillan Cottom takes a new look at that question. Cottom, an associate professor at the University of North Carolina, author and 2020 MacArthur fellow, focuses in recent columns on what she terms "scam culture." She widens the definition of scams--"A scam is a strategy or arrangement intentionally designed to benefit a few participants by obscuring the risk or cost for other participants"--to an arena populated not just by criminals, but also by politicians and corporations. In one column she notes: "In a lot of ways, scam culture is the foundation of the misinformation and disinformation that plagues our public discourse on the pandemic." Cottom says consumers are expected to be experts "in everything," and if we somehow fail to understand a transaction, we are blamed for not knowing enough. "It is no wonder that so many of us think that we can parse vaccine trial data, compare personal protective equipment, write school policy and call career scientists idiots on Facebook. We are know-it-alls because we are responsible for knowing everything." There is much to unpack in these columns. Yes, they are behind a paywall at the New York Times, but when writers like Cottom give us original insights into the world we're in and our own behavior, it's worth supporting them.

 
  Confidently vulnerable  
 

Why do we fall for scams? As one reason, many researchers point to "overconfidence bias," the tendency of humans to overestimate our abilities. Overconfidence can lead to risky decisions--whether it be a bad investment, making the wrong purchase or falling for a scam. (Quartz has a quick quiz to measure your overconfidence in your own opinions.) One of our aims at SCAM GRAM is not just to alert you to the way scams are perpetrated, but to give you insights into why it's seemingly so easy to scam people. A BBC article last year examined "How fraudsters exploited our fears during the 'scamdemic'," pointing out that scammers use "psychological tricks," like capitalizing on deference to authority (the "IRS is calling") or fear of missing out on an opportunity ("a limited-time opportunity"), to entrap victims. Scammers also benefit from the fact that we are tied to our mobile devices, with their real-time notifications and constant distractions. You may think you are too smart to fall for a scam, but a psychologist quoted in the article warns we should be wary of over-confidence in our own abilities--"many very intelligent and educated people can still fall for scams." A suggestion: Wean yourself from the habit of responding in knee-jerk fashion to every message you receive. Stop and think: Does it sound too good to be true? Then it probably is. And, as this editorial concludes, if you do become a victim, don't stay silent out of shame or embarrassment. Maybe speaking out will help others avoid the same fate.

 
  Hope springs eternal  
 

You are a [loser]. We are not fans of sweepstakes--the odds of winning are slim to none, even if they are legitimate. Worse, too, often contest entry forms are just a way for companies to collect more data about us for market surveillance and advertising. But we all have friends and relatives who remain hopeful they might win. According to news stories like this one from TMJ4 News, the new year means the start of Publishers Clearing House's (PCH) annual sweepstakes. Be like the savvy octogenarian featured in the news video, and be suspicious--very suspicious. She got a robocall saying she had won the PCH sweepstakes--money, a car and free gas--but realized it was a scam. "For one thing, I never entered," she said. She and her goddaughter decided to let the world know because they worried "other seniors might fall for it." The use of PCH's name by scammers is so prevalent that the company has its own anti-fraud page. There, it provides "valuable tips and warning signs to help you know the difference between a legitimate sweepstakes offer and a scam." One reminder offered: "No purchase is necessary to enter a legitimate sweepstakes, and the winning is always free!" And if you have second thoughts about any personal information you shared with PCH, you can request that it no longer use your information by emailing privacychoices@cc.pch.com. Learn more about PCH privacy policies here.

Real-ly awful. Bob Sullivan of The Perfect Scam podcast at AARP rounded up some of his stories from 2021 in "6 Tales of Real-Life Scams." SCAM GRAM readers may remember some that were featured in this newsletter, but most of us can use a refresher course in the ways we could be duped. A reader's comment brings some feisty fun to the party: "I sometimes wish someone would try the grandkids scam on me. I would be delighted to tell them to let my grandkids rot in jail (I have no children)." While it might be fun to indulge in revenge fantasies, remember it is never a good idea to engage with scammers. The chances are high that you'll be targeted as a "sucker" and open yourself to further scam attempts.

 
  Tips  
 

The taxman cometh. Nothing gets your adrenaline flowing like a communication from the Internal Revenue Service (IRS). Since it's that time again, a reminder is in order that the IRS doesn't initiate contact with taxpayers by email, text messages or social media channels to request personal or financial information. IRS collection employees can, however, call or come to homes or businesses unannounced to collect a tax debt, but they must provide two forms of official credentials: a "pocket commission" (a type of government ID) and an "HSPD-12" card. The IRS does assign certain cases to private, third-party debt collectors under contract, but these collectors can visit your home or business only after giving you (or your representative, if any) written notice about the visit. Learn to spot scams that have targeted taxpayers in the name of the IRS here.

Testing you. The official website to order free, at-home COVID-19 tests from the federal government opened last month. Consumers are being warned that scammers are deploying fake order forms in attempts to illegally harvest consumers' personal information. Avoid fake sites by ensuring you are at covidtests.gov before entering any info. (We vetted the link in this newsletter.) Scammers will change the web address slightly in order to trick people into heading to a lookalike site, where the aim is to get you to hand over personal details. At the official site, no payment is necessary--just your name and address. If you are asked for payment details or sensitive ID, like your Social Security or driver's license numbers, take it as a red flag that you are on a fake site.

What the NFT!? Providing you even care about investing in "non-fungible token" collectibles, be aware there is a lot of fraud in this space, some of it tied to influential people and celebrities. Non-fungible tokens, or NFTs, according to The Verge, are each unique and "can really be anything digital (such as drawings, music, your brain downloaded and turned into an AI), but a lot of the current excitement is around using the tech to sell digital art." The Verge says they are unique because: "NFTs are designed to give you something that can't be copied: ownership of the work (though the artist can still retain the copyright and reproduction rights, just like with physical artwork)." Which brings us to the scam part: According to a Rolling Stone article in which "crypto experts share their tips for spotting red flags," you should turn off your direct messages in Discord (a chat app that is de facto home for NFT communities); beware the "airdrops" (promotional cryptocurrency); and mind the "rugpulls" (fake or preliminary NFTs). Read it if you dare--or care.

Quickly defrauded. QR (quick response) codes are those square, maze-like images you can scan with your phone to get to a website address or product information. They can be found in magazine ads, in restaurant menus and on parking meters, just to name a few places. The FBI says scammers find them useful, too. The Bureau's Portland, Oregon, office warned that scanning random QR codes can deliver you into scammers' clutches. If you scan a scam quick code, you could give scammers access to your device. They then can access your contacts, download malware, or send you to a fake payment portal. Once there, you might inadvertently provide access to your banking and credit card accounts. If you make a payment this way, it's difficult, if not impossible, to get those funds back. Bogus code stickers can be stuck over legitimate ones, so check to see if it's a sticker or if the image appears to have been tampered with. Do not scan QR codes received in emails unless you are absolutely certain they are legitimate--call the sender, if recognized, to confirm. Last month, ABC News ran a story on how the scam played out on parking meters in Texas.

Phishing lure. Have you received an email from yourself? Unless you purposely forwarded an email to yourself, you're probably the target of an email spoofing scam, a type of "phishing" (fraudulent) email. These are not just "fishy," but can (and do) carry malware (malicious software programs) that could harm your computer and steal your personal information. So, delete such emails immediately, without clicking on any links in the email or opening any attachments. To protect yourself from malware and "bloatware" (which can arrive in bundled software downloads), make sure you have an antivirus program running on your devices. In case you wonder, these emails do not come directly from your mailbox and you won't find them in your sent mail. Instead, spammers (and scammers) use available programs to "spoof" the sender--and that can include your email address, which, especially if you've had it for a long time, is probably for sale nefariously on the Dark Web (acquired from data breaches) and (unfortunately, legitimately) included in lists sold on the open market by data brokers to marketers and others.

Anti-social media. Last year, more than 95,000 people told the Federal Trade Commission (FTC) they'd been scammed by a con that started on social media. More than 1 in 4 people who told the FTC they'd lost money to a scam said the transaction started with a post, an ad or a message on a social media platform. All told, these people were taken for about $770 million. Check out our publication Take control: Customizing your social media privacy settings for tips on staying in control while using your favorite social platforms.

 
  Tell us how we're doing!  
 

We'd love your feedback on how we've been doing, and which of our services have been most important to you. Please fill out our (very) brief three-question survey here!