Whoops, nearly got phished.
An alert that subscription payment for one of our wordpress.com sites had failed was received by email.
Log in link took me to a google login. As I never use those, I went to the site dashboard - nothing.
Went back to examine the links in the email and sure enough they were fakes.
Be warned, be very careful and never click on a link that's to do with payment in an email!
#phisihng #ScamAlert

An "internet keyword" scam attempt involving my online nickname "duanin2" #scam #email #scamalert

I know better than to underestimate the stupidity of people, but even then: who would buy tickets for Fyre 2? Everyone knows by now what a total scam and shit show Fyre is. But then again Trump also got reelected. Clearly there’s no cure for stupid.
https://www.theguardian.com/culture/2025/feb/27/fyre-festival-2-mexico #fyre #fyrefestival #fyre2 #scamalert #nocureforstupid

Man, the unpaid toll roads scam is running hard & fast. Especially interesting that I neither have a vehicle nor drive. Don’t fall for it, delete!!! #Scam #textScam #WTF #ScamAlert

Ah yes, that is indeed how two factor authentication works. You "Enter the code in the popup", and if that's too hard just "Reply Y"! How very convenient! Very convenient for them to send the verification text at precisely 10:00pm also.

And if you believe that, I know a Nigerian prince I'd like you to meet.

I mean, the fact that #Moxie has been affiliated with #MobileCoin makes @signalapp look bad and nowadays, buymobilecoin.com refers to a #Shitcoin-based payment processor in #Nigeria which has some pretty questionable ToS...

• I'll let you guys make up your own mind.

PLEASE READ THIS PART FIRST: this post is intended to raise awareness and hopefully prevent someone from getting hacked and/or scammed; please do NOT go to this website; please do NOT call this phone number; I've redacted information below in plain text that is clearly visible in the screenshot; that alone ought to tell you something.

This entire thing simply has to be a scam, and more specifically, this link has to be a phishing link.

Look at the link. It starts with w. which I would assume is meant to look like www. if you were to just glance at it quickly. The problem is, when it's only one w in front of the domain, it means that w is a subdomain thereof; so the entire link, including www. would be:

https[colon, double forward slash]www[dot]w[dot]unifininc[dot com, forward slash]jegtkq

I can't think of a single reason why anyone would want a single w as a subdomain of their website except to try to trick people into clicking on it by mistake. For one thing, the www. is not required anymore (although I'm pretty sure it was at one time, IIRC), and if you decide to include that anyway for some reason, then it reads www.w. in front of the domain, which is confusing to read.

It's objectively somewhat of a clever trick—I'll give them that—and if anything, I find this even more irritating because of that.

EDIT: was typing in a hurry, bad idea.

"The Riverside County Fire Department has been made aware of reports concerning fraudulent donation solicitations targeting residents within Riverside County. Individuals claiming to represent the Riverside County Fire Department are requesting monetary donations at various tiers, including amounts as high as $3,000, $2,000, and $1,000, with smaller amounts of $500, $250, and $150 also being requested.
The Riverside County Fire Department wants to clarify that it is not conducting any fundraising efforts or donation solicitations. Any calls, visits, or messages requesting donations on behalf of the department should be considered fraudulent"

I had a scary experience with my website that I want to share as a warning. I asked for help making my WordPress site look better in a LinkedIn group, and someone offered to assist, saying it wasn’t responsive. I gave them admin access, but after just one day, I found changes I didn’t make. New pages I didn’t recognize had been created, my menus were altered, and my logo was removed. Thankfully, they didn’t delete anything! They’d only hidden my pages and menus, so I was able to restore everything. I’ve now removed their access. I think this person may have been trying to take over my site.

This was after only 1 day—who knows what they might have done with more time? Please, be extremely cautious about who you trust with admin access to your site, even if they seem helpful. Lesson learned the hard way!

#ScamAlert

I just got a call from a Belgian number that started playing a recorded message that my Revolut card had been charged €79 for Amazon Prime.

I do not have a Revolut card.

Before you shop this Black Friday & Cyber Monday, here are some fakes to watch for. Cyber criminals are working even harder for your money this year.

#blackfriday #cybermonday #scamalert #cybersecurityawareness #holidayshopping
https://www.youtube.com/watch?v=Gmpuis9xx1Q

#PSA #Authors #Writers #ScamAlert

Bad press alert: #Dreamspinner is once again soliciting submissions, despite the fact that they have not paid royalties owed to some of their authors for over six years!

Here's @victoriastrauss of Writer Beware on them, back in 2019:

https://writerbeware.blog/2019/09/13/authors-concern-grows-over-late-royalty-payments-at-dreamspinner-press/

#ScamAlert

Just got a call on my home phone from "Amazon Security" saying my account is connected from four different locations and that ordered a MacBook Pro for over $1000, and to Press 1 to connect to an agent.

Please remind your less-technical (or merely less paranoid) friends and family that this is a scam, and to just hang up.

Excited to unveil the hidden truth behind ticket resale with our latest blog post! Learn about Ticketmaster & AXS's alleged role in facilitating scams.
https://www.eliza-ng.me/post/sticketmastersc/
#TicketResale #ScamAlert

#ScamAlert - TLDR or if you don’t have a faceache account - still worth being aware of the difference between bank transactions marked as PENDING and those marked as POSTED

[as a personal example, on 17 june i placed an online grocery order with colesworth. my a/c was Debited $173.85. only if i tap on the online account entry to seek details do i see the word PENDING. on 20 June that entry was changed to $161.20 with the status POSTED. the difference reflects an adjustment for the stuff i ordered but did not get, number of paper bags used for order prep etc.

scam merchants on faceache etc use PENDING entries to convince targeted people that money has been placed in their account. targets “refund” money they think they actually have been sent in error, not knowing that the amount can be altered/withdrawn later by the person/scammer initiating the transaction.]

Scammers are targeting the Facebook profiles of users like Sarah for one specific reason
https://www.sbs.com.au/news/article/scammers-are-targeting-the-facebook-profiles-of-users-like-sarah-for-one-specific-reason/ckby7jvo5?cid=newsapp:socialshare:copylink

WARNING: Do NOT buy shoes from IMAURRKS. I ordered 3 pairs of shoes, it took 4 weeks to get them, they're at least 2 sizes too small, they made 0 offers to replace them, and only offered a 40% refund.

Scam alert.

I saw this on Facebook just now. Thought something was not right about it. Clicked through to get a better idea of what that might be.

The website they made is a click-scam that will try to download malware. Dressed up as a front end to clinical trials.

Facebook is happy to allow these scams to run because they get paid each time someone clicks. They don't care. It should be illegal what Facebook is doing. I hate everything about that website.

"A Total Scam"– Trump's Endorsed Bible Has a History of Negative Reviews.

#Mastodon #Friday #GoodFriday #ScamAlert
https://youtu.be/qZp0zjobSK8?si=8hhT0tvCBVTVNxLe