START A PETITION37,000,000 members: the world's largest community for good
Group Discussions
| track thread
« Back to topics
FBI's IC3 Scam Alert & FBI Shopping Tips
5 years ago

Internet Crime Complaint Center's (IC3)
Scam Alerts November 26, 2012

This report, which is based upon information from law enforcement and complaints submitted to the IC3, details recent cyber crime trends and new twists to previously-existing cyber scams.

Top Nine Fraud Attacks impacting eCommerce

A payment management company recently reported on the top fraud attacks most impactful to eCommerce. These attacks were identified by frequency of attack and revenue loss.

In ranked order, the top nine fraud attacks identified were:

  • 9) Triangulation Schemes
  • 8) Phishing/Pharming/Whaling
  • 7) Botnets
  • 6) Re-shipping
  • 5) Affiliate Fraud
  • 4) Identity Theft
  • 3) Friendly Fraud
  • 2) Account Takeover
  • 1) Clean Fraud
Fraud Targeting Direct Sales Companies

Several legitimate direct sales companies have seen a large surge in fake orders being places with their consultants. The consultants are contacted through the legitimate “find a consultant” link located on the various sales Websites. In each instance, the suspects are placing large orders and agreeing to pay by check. The consultant receives the check for a much larger amount than the total cost for the products. The consultants are instructed to cash the check and send the difference back to the buyer via wire transfer. The IC3 has received several complaints filed by consultants from companies affected by this scam.


For more information regarding online scams visit our Press Room page for the most current Public Service Announcements.

5 years ago

Intelligence Note

Prepared by the Internet Crime Complaint Center (IC3) November 20, 2012

The FBI continues to remind shoppers to be wary of Internet fraud during the holiday shopping season. Scammers use many techniques to deceive potential victims, including creating fraudulent auction sales, reshipping merchandise purchased with a stolen credit card, selling fraudulent or stolen gift cards through auction sites at a discounted price and using phishing e-mails to advertise brand-name merchandise for bargain prices or e-mails to promote the sale of merchandise that is counterfeit.

In advance of the holiday season, the FBI, in partnership with the Merchant Risk Council (MRC), would like shoppers to be informed of the common scams that affect consumers and E-commerce. The MRC is an organization that works to increase networking and information sharing among merchants to better enable members to successfully fight online fraud.

Purchasing any new product or gift card on an auction or classified advertisement site where the price is significantly lower than any sale prices in retail outlets

Many of these sellers, especially for gift cards and tickets, have purchased these items with a stolen credit card. Most likely, the gift card or ticket will be deactivated by the time the recipient uses the card or ticket.


Never provide credit card numbers, bank account information, personally identifiable information or wire money to a person who advertises items on these sites at a too good to be true price. Many times, fraudsters will post a popular item to obtain this information, and the goods will never be mailed, but your card or identity will be used fraudulently later. If you make a purchase from these sites, we encourage you to check a seller’s ratings and feedback to ensure he or she is reputable.


Phishing and scam e-mails, text messages or phone calls

Many times, e-mails, texts or phone calls will look or sound like they are coming from a well-known retailer, stating a need to “verify” the full credit card number you used for a purchase or ask you to click a link to update personal account information. If you receive an e-mail that asks you to click a link to verify information, delete it. Type the retailer’s or financial institution’s website into a browser to log into your account. If the fraudster is insistent, ask him or her to read you the card number first or ask to call back. If it is a legitimate call, the company representative will have no problem with your calling back through the customer service line.


"One Day Only" websites featuring the sale of a "hot item"

During the holiday season, there will be an increase in websites created to sell specific items in high demand. Typically, the cardholders never receive the product, but the credit card information they entered is used for fraudulent purchases. It is important to only make purchases with companies and sellers who have a history and can be identified when searching reviews and ratings.


Postings of popular items for free or drastically reduced prices

There are many gift card offers on social media sites claiming to be from major retailers. These offers are typically used to gain access to consumers’ social media accounts either to log in to other accounts you may have tied to this account or to post illegitimate offers on your behalf. Purchasing an item at a reduced rate based on a posting from someone you do not know can often lead to a credit card compromise or the purchase of a counterfeit item.


"Work from home" offers, to act as a private reshipper, often fronting the shipping costs on behalf of the fraudster

Offers to work from home to reship items to another country or another person often means the goods were purchased with stolen credit cards. Having these goods shipped to your home and sending them to another person could have legal implications. Also, many times the money promised for completing this service is never paid. These scams can sound legitimate at first, so be leery of anyone offering a lot of money for a simple task.


Remember, if an offer seems too good to be true, it probably is. Consumers are urged to be very skeptical of people offering a great deal outside of any established retail business.

5 years ago


Here are some tips you can use to avoid becoming a victim of cyber fraud:

  • Do not respond to unsolicited (spam) e-mail.
  • Do not click on links contained within an unsolicited e-mail.
  • Be cautious of e-mail claiming to contain pictures in attached files, as the files may contain viruses. Only open attachments from known senders. Scan the attachments for viruses if possible.
  • Avoid filling out forms contained in e-mail messages that ask for personal information.
  • Always compare the link in the e-mail to the link you are actually directed to and determine if they actually match and will lead you to a legitimate site.
  • Log on directly to the official website for the business identified in the e-mail, instead of “linking” to it from an unsolicited e-mail. If the e-mail appears to be from your bank, credit card issuer, or other company you deal with frequently, your statements or official correspondence from the business will provide the proper contact information.
  • Contact the actual business that supposedly sent the e-mail to verify if the e-mail is genuine.
  • If you are requested to act quickly or there is an emergency, it may be a scam. Fraudsters create a sense of urgency to get you to act quickly.
  • Verify any requests for personal information from any business or financial institution by contacting them using the main contact information.
  • Remember if it looks too good to be true, it probably is.

To receive the latest information about cyber scams, go to the FBI website and sign up for e-mail alerts by clicking on the red envelope labeled “get FBI updates.” If you have received a scam e-mail, please notify the IC3 by filing a complaint at For more information on e-scams, visit the FBI’s New E-Scams and Warnings webpage at

5 years ago

Always compare the link in the e-mail to the link you are actually directed to and determine if they actually match and will lead you to a legitimate site.


In both Internet Explorer and Firefox (likely most browsers) you can hover the mouse over a link in an email, don't click, and see where the link where actually take you at the bottom of your screen.  You should always verify the link before you click on it, even with emails from people you know.  If the link doesn't match what it says it is, or the link looks in any way suspicious, don't go there!

This post was modified from its original form on 26 Nov, 14:21
5 years ago

I have deleted many messages from what says is my friends but all that is ever on the message is a link.....RED FLAG!!!! I delete the message without even clicking on the link! Our creidt card was breached about a month or more ago and they had to send us a new one out! Thank goodness we got it in time for our friends to bring our mail up before it really started freezing and the new creidt cards were in the mail thank goodness!!

This thread is archived. To reply to it you must re-activate it.

New to Care2? Start Here.