As times get tougher scammers are becoming more determined and craftier at cheating people out of their money. Globally security experts are seeing up to a 155% increase in certain types of scams. Momentum Metropolitan’s security teams have noted similar increases of scams targeting South Africans. Financial companies and their clients seem to be particularly in the sights of fraudsters and cyber-criminals who target clients by intercepting their emails, impersonating communications and executing malicious cyber-attacks, most commonly known as phishing.
The head of special forensic investigations for the Momentum Metropolitan Group says, “Your security is a high priority for us, especially as we are seeing an unprecedented increase in fraudulent activity. The scammers are getting very clever in deceiving people. We can only defeat them together, so we’d like to reiterate our call to consumers to be hyper-vigilant, aware and cautious. We’ve listed below a few of the scams our experts have identified”.
There is currently an increase in interception of e-mails. When a client clicks on a phishing link, a link that looks identical and therefore legitimate, the criminal is able to have access the client’s email account, which enables the criminal to manipulate the content of emails.
We advise clients to pay meticulous attention to detail when receiving and sending information about their finances. We have noted a recent trend where scammers may change one letter in a legitimate email address or use fake websites, or fake social media and WhatsApp profiles to defraud you.
A ‘returning’ email may be slightly altered (very hard to see) and this results in forged documentation being shared with the unsuspecting client, thinking it was communication from the company or the adviser. For example email@example.com will be changed to firstname.lastname@example.org. Most likely you had to look more than once to see the alteration.
Another scam to look out for, is people replicating the naming convention of e-mail addresses. It is very easy to find or work out the addresses of CEO’s or any employee whose name you may recognize, adding to the supposed legitimacy of an email. You may receive an email from what reads like a genuine employee, but when you reply it goes to a completely different address. Hover your cursor over the email address or copy and paste onto a new email to see what forwarding email address is revealed. email@example.com might be revealed to be firstname.lastname@example.org.
Constantly review and refine the strength of your passwords. Password123 is not a good password! And DO NOT use the same password for all your online activity, because if one password is cracked it will open up all your login details.
We ask everyone to keep in mind the usual tips: to be careful of promises of low repayment loans, or high returns on investments in a short space of time. If it’s too good to be true, it probably is. If unsure, rather ask your financial adviser or contact email@example.com
Our forensic expert’s final words of caution, “If anything feels wrong, stop and scrutinise what you are doing. Check every detail and every spelling, do the cursor scan over email addresses and even contact the company directly to check if it is actually them that you are doing business with. Especially check bank deposit details and never hand over cash or deposit money into an individual’s account. A moment to check or one phone call can save you from being caught out”.