So, how do
you navigate this online landscape without falling victim to a scam? Here’s
your crash course on identifying social media scams:
1. The Allure of Free Stuff
and Unbelievable Deals:
Be wary of
fake giveaways on social media. Scammers often lure people in with promises of
free vacations, luxury giveaways, or ridiculously cheap designer goods.
Remember, legitimate businesses rarely offer such extravagant deals through
social media.
2. The Urgency Factor:
Scammers
often create a sense of urgency. They might pressure you to act fast, claiming
limited spots in a giveaway or an expiring discount code. Don’t let the clock
control your decisions. Take a step back, verify the source, and research the
offer before taking any action.
3. The Impersonation Game:
Scammers
often impersonate trusted entities like banks, social media platforms, or even
your friends. They might create fake profiles with stolen logos or hijack
compromised accounts. Always double-check the profile information – look
for inconsistencies in usernames, spelling errors, or a lack of mutual friends
and save yourself from social media impersonation scams.
4. The Emotional
Rollercoaster:
Scammers
prey on your emotions. They might tug at your heartstrings with sob stories or
exploit your desire for romance or connection. Be cautious of online
relationships that progress quickly, especially if they involve financial
requests or promises of meeting offline under suspicious circumstances.
5. The Phishing Phantoms:
Social
media phishing scams are a classic weapon in the scammer’s arsenal. You might
receive messages with links that appear legitimate, leading to fake login pages
designed to steal your credentials. Never click on suspicious links,
especially those urging you to update your account information.
Here are some additional
red flags to watch out for:
·
Vague or poorly written messages: Legitimate
businesses typically have professional-looking content.
·
Requests for personal information: Never share
your Social Security number, bank details, or passwords through social media.
·
Poor grammar and spelling: Professional
companies generally maintain high standards for written communication.
·
Pressure to download attachments: Avoid downloading
attachments from suspicious messages unless you expect a file from a trusted
source.
How
to Protect Yourself from Social Media Scams?
·
Scrutinize profiles: Check usernames, follower lists, and
post history before engaging with unfamiliar accounts.
·
Perform Reverse Image Searches: Use tools like
Google Images to check if a profile photo is stolen or used across multiple,
unrelated accounts.
·
Verify information: Don’t rely solely on the information
presented in a message. Do your own research to confirm the legitimacy of an
offer or promotion.
·
Enable security features: Most social media platforms
offer features like multi-factor authentication to enhance account security.
·
Be mindful of what you share: Do not
overshare personal details or financial information on social media.
·
Report suspicious activity: Report any
suspected scams to the social media platform and consider blocking the account.
By being
cautious about what you see and click on, you can shield yourself from scams
and confidently navigate the online world. Don’t let these imposters
steal your hard-earned money or personal information.
Social media scams and CCTV surveillance are converging in two primary ways: criminals using technology to violate privacy and perpetrate fraud, and cybersecurity experts or law enforcement using CCTV to catch these scammers. Emerging threats include "digital arrests" via video calls, hacking of Wi-Fi-enabled cameras, and the rise of deepfake technology.
12-Examples
of Social Media Scams You Should Avoid at All Costs
Awareness
is key to protecting yourself against social media scams. Here are eight
examples of social media scams prevalent today that you should learn to
recognize and avoid.
1. Phishing Through Direct
Messages
Phishing
scams don’t only exist in email. In fact, they’ve found their way to
social media. Social media phishing is when scammers send their victims
messages pretending to be from a legitimate source, whether a friend or a
reputable company.
The
messages often portray a sense of urgency, causing the victim to panic into
clicking a link. The link then leads to a fake login page—and once you input
your credentials, the scammer will be able to steal it and gain access to your
accounts.
Whenever
you receive a direct message on social media, always verify the sender's
identity. Never click on suspicious links provided by a suspicious person.
2. Quizzes or Personality
Tests
Quizzes
and personality tests are prevalent on social media, providing what seems
harmless fun to pass the time or discover new things about yourself. However,
these tests have become goldmines for scammers due to their popularity.
When you
open a quiz or personality test on social media, the platform will ask you for
access to your profile information. Some scammers even go as far as tricking
you into answering security questions. When you encounter a quiz or social
media test that asks for unnecessary personal details or permissions, do not
proceed.
3. Fake Giveaways and
Contests
People
love winning free things—and companies have used that to their advantage by
providing giveaways and conducting contests on social media. But they’re not
the only ones—scammers also use these to harvest user data or spread malware.
When you
encounter a giveaway or contest from an unreputable company promising you
valuable prizes in exchange for your personal information, don’t fall into the
trap.
Remember
that genuine giveaways will always be conducted through a company’s official
channels—and they won’t ask you for sensitive information to participate.
4. Impersonation of Family
and Friends
One of the
primary uses of social media is to stay in touch with family and friends.
Scammers have used this to carry out their agendas, creating fake profiles to
impersonate people close to you. They’ll use these fake profiles to pretend to
be your family member or friend, claim to be in an emergency, and ask for
financial assistance. The growing use of Artificial Intelligence (AI)
allows scammers to impersonate family and friends with manipulating videos or
recordings.
Before
extending help to anyone, always double-check the identity of the sender.
Contact the person through other means, like a call, text, or email, to confirm
they sent you the message before taking any action.
5. Get-Rich-Quick
Investment Schemes
People are
easily lured by investment schemes promising them significant earnings and easy
money. That’s why these are often plagued with scams. Scammers can use fake
testimonials and manipulated images to pretend to be a legitimate investment
opportunity and lure you in with a promise of high returns for minimal
investment.
The
increase of cryptocurrency is highly volatile and largely unregulated making it
a prime target. Consumers are urged to be cautious, avoid unsolicited messages,
and never send cryptocurrency to strangers. Legitimate companies and government
agencies will never demand payment in cryptocurrency. Once a transaction is
made, it cannot be reversed, so it’s crucial not to invest more than you can
afford to lose. Understanding common scams and how to avoid them is key to
protecting yourself.
To protect
yourself from this, remember one thing: If an investment opportunity sounds too
good to be true, it probably is.
6. Romance Scams
In 2024, 60,923 romance
scams were reported, which caused losses totaling $1.20 billion. Due to the
popularity of online dating, it’s easier for scammers to fake a romantic
relationship with a victim to gain trust and, ultimately, harvest financial
assistance.
Romance
scams start with the scammer creating a fake profile used to form relationships
with one or multiple victims. Once they have established trust, they create a
scenario that requires financial help. Because trust has been built and the
victim has become romantically invested, they will quickly fall for the scam
and wire the money over.
To protect
yourself from romance scams, be cautious about online relationships and watch
out for red flags, such as when the person is quick to profess their love or
asks for money.
7. Job Offer Scams
Work-from-home
setups are all the rage these days, with so many office employees actively
seeking remote jobs instead of office work. But scammers are preying on job
seekers, offering attractive work-from-home opportunities that sound too good
to be true.
When the
job seeker accepts the offer, the scammer will then require their personal
information or an upfront fee to get started with their employment.
Remember
that legitimate employees, online or otherwise, will never ask for payment from
you as a condition for employment.
8. Tax Scams
The IRS
released its 2025 “Dirty Dozen” list, a yearly campaign aimed at alerting
taxpayers, businesses, and tax professionals to the most common and evolving
tax scams. These scams range from phishing and smishing emails, fake charities,
and misleading social media tax advice, to false claims involving tax credits
like the Fuel Tax Credit and the misused Sick and Family Leave credits.
The IRS
warns against schemes involving ghost tax preparers, spear phishing attacks on
professionals, overstated withholding, and bogus self-employment and household
tax claims. The campaign also flags misleading Offers in Compromise and
third-party account scams.
9. "Digital
Arrest" Scams:
Fraudsters
on platforms like WhatsApp and Telegram pretend to be law enforcement
(Police/CBI) and conduct video calls to intimidate victims, often demanding
money to stop a fake investigation. These victims are often kept under constant
surveillance, prohibited from talking to family, and coerced psychologically.
10.Hacked CCTV Cameras:
Weakly
secured or default-password-protected internet-connected cameras (CCTV, baby
monitors, office cameras) are easily hacked. Hackers can watch private homes,
businesses, or offices, using the feed to spy or gather information for
extortion.
11. Deepfake CCTV:
Scammers
are beginning to use AI to generate fake CCTV footage to impersonate people or
fake incidents, making visual evidence harder to trust.
12. CCTV Installer Scams:
Fraudsters
create fake social media profiles or contact CCTV installers, promising bulk
installation projects to lure them into doing work without payment.
A Youtuber
has hacked into the CCTV cameras of an office used by tech support
scammers and reported them to the police. The video feed of what is going
on in that office ends with the arrest of the scammers.
CCTV
The
Youtuber, acting under the handle Scambaiter, turned his attention to
Punjab in India to spy on a group of Tech Support scammers.
“Scambaiting”
means scamming the scammers, often by pretending to take their bait and wasting
their time. The reasoning is that while the scammer is busy trying to reel the
scambaiter in, they don’t have time to victimize someone else. Which makes it
doing a good deed while having some fun.
Scambaiter,
goes a little further than simply wasting scammers’ time. He has amassed almost
1.5 million YouTube followers by “hacking back” against the scammers and
exposing where and how they work—in this case by using the scammers’ own CCTV
cameras against them.
Scambaiter
also hacked into some of the systems the scammers were using to defraud US
citizens out of thousands of dollars. So, besides footage of the scammers, his
hack also included taking screenshots from the laptops that the scammers were
using while “at work”.
One thing
that jumps out is that this is a very small and badly secured organization.
Which came in handy because it enabled Scambaiter to show us several sides of
the operation.
The
video
Scambaiter
condensed a weeks’ worth of footage into a 20-minute clip. In the
beginning we see the scammers at work, posing as Best Buy’s Geek Squad tech
support employees.
We get a
good look at how these scammers are organized and how they operate. If you
didn’t know they were talking people out of their money for non-existent
services, it would look like any other, legitimate, office.
During the
video Scambaiter explains how he found information about the scammers and their
physical location, until he had gathered enough evidence to convince the local
police to spring into action.
At the end
of the CCTV footage you can see the police officers enter the building, shut
down the electricity on two floors, and arrest five of the main scammers.
Scambaiter
then concludes the video with a police report stating the charges against the
scammers, and a selection of the media coverage about the incident.
Yes, if your home or bussiness have HikVision, Dahua, TPLink, CP Plus etc brand low cost, non-NDAA or non-STQC camera or DVR or NVR, then be alart Hackers
May Be Watching Your Private Moments. Cybercriminals
are now targeting home surveillance systems, not just for data theft, but also
to blackmail users by leaking their private footage online. India’s
cybersecurity watchdog, CERT-In (Indian Computer Emergency Response Team), has
issued an urgent alert warning citizens about this growing threat. Earlier,
most online frauds involved phishing links or fake websites stealing banking
details. But the new wave of cybercrimes invades people’s private lives by
hacking into household CCTV cameras. The hackers gain unauthorized access to
surveillance footage and use it to extort money from victims. This is not just
a privacy breach—it’s a serious emotional and financial threat.
How Do
Hackers Access CCTV Cameras?
Default
Passwords
Most users
do not bother changing the default login credentials of their CCTV systems.
Hackers scan the internet for such vulnerable devices, and if they find one
with basic passwords like “admin” or “12345,” or "Admin@123" or "Welc0me" or "PaS$w0rD" they can gain access in seconds.
Unsecured
Mobile Apps or Cloud Platforms
Many CCTV
systems rely on third-party mobile apps or cloud services for remote access. If
these apps are poorly secured, hackers can easily intercept live feeds.
Public IP
and Port Forwarding
Some
cameras are directly accessible via public IPs with port forwarding enabled.
This exposes them to brute force or scripted attacks through web browsers.
Phishing
Scams & Fake Tech Support Calls
Scammers
often pose as technical support agents, urging users to update their systems.
They trick people into installing remote access tools like AnyDesk, allowing
full control over devices.
Common
Tactics in CCTV Camera Scams
·
Blackmail
Using Private Recordings: Hackers extract sensitive footage and threaten to
share it on social media unless a ransom is paid.
·
Fake
Service Expiry Calls: Fraudsters call victims claiming that their CCTV system
subscription has expired and demand payment for updates or renewals.
·
Threats
of Viral Leaks: Victims are warned their videos will be posted online. Often,
these threats are fake, but fear pushes people into paying.
How to
Stay Safe from CCTV Hacking
✅
Change the default password immediately and use strong, unique credentials.
✅
Enable Two-Factor Authentication (2FA) for additional
security.
✅
Only download camera-related apps from official Play Store or App Store.
✅
Be wary of unsolicited tech support calls or suspicious messages.
✅
Secure your Wi-Fi router and keep firmware updated.
Cyberspace
connects us virtually with crores of online users across the globe. With
increasing use of cyberspace, cybercrimes especially against women and children
such as cyber stalking, cyber bullying, cyber harassment, child pornography,
rape content, etc. are also increasing rapidly.
To stay
safe in the online world, it is important to follow some cyber safe practices
which may help in making our online experience and productive:
1.
Cyber awareness and hygiene for parents
Talk to
your children about
the potential online threats such as grooming, bullying, and stalking, keep
track of their online activities. Set clear guidelines for internet and online
games usage.
Notice
indicators of change in behaviour: If your child begins to spend more time online and starts
being defensive or secretive about their online activities, it may be an
indicator of cyber grooming. Talk to your child and engage him/ her in other
activities.
Protect
your child from Cyber Grooming: Grooming
is a practice where someone builds an emotional bond with a child through
social media or chat window with an objective of gaining their trust for sexual
exploitation.
Children
may remove privacy settings on social media to make more friends. Parents
should discuss responsible use of social media. Also, they should educate and
help them in selecting strong privacy settings.
Never
click suspicious links or attachments: Never click on links or files received in e-mail, text
message or social media from unknown person. This may be an attempt to infect
computer with a malware.
Cover
your webcams:A web
camera (default in laptops) if hacked/compromised can be leveraged as a medium
to observe/watch and record day to day activities. It is a recommended to cover
webcam when not in use.
Install
anti-virus software’s with parental control functionality or parental control software’s on the
devices used by children and review there privacy settings of social media
sites used by them.
Keep
software updated:Keep
your software and Operating system up-to-date. Hackers target software
vulnerabilities to access private information and putting you at risk, so make
sure to update all your software with the latest security patches. Never
install software, games, music and apps from trusted sources.
Set
Secure browser settings:Always
choose updated version of the browser and install safe browsing tools for
protection yourself from hackers and malware.
2.
Cyber awareness and hygiene for teens and young adults
Secure
your online presence just like you secure yourself: If you have not selected the right
settings on your social media accounts, then photos and videos posted can be
viewed, downloaded and used by others without your knowledge.
Select the
right privacy settings and content sharing filters on social media so that you
are sharing your information, photos and videos only with your trusted ones.
Be
selective about accepting friend request of strangers on social media
Learn how
to block someone who is making you uncomfortable
Learn how
to remove someone from your friends list
Remember
to logout from social media websites after use
Secure
your phone with password
If you
notice your fake account has been created, you can immediately inform social
media service provider so that the account can be blocked
Be
mindful of your appearance on video chat & video calls
Your video
chats on social media sites can be recorded by the person on the other side
There have
been instances where video chats which were supposed to be private in nature
have been recorded and shared on social media groups and websites
Be careful
while accepting chat requests from strangers
Do not
use Smartphone for taking sensitive personal photographs and videos
Do not use
Smartphone for taking sensitive personal photographs and videos. Most of the
smartphones are connected to internet and cloud storage. If a picture or video
has been clicked/ recorded by using smartphone connected with the cloud, it may
get saved automatically into the cloud. Even if users delete their photos or
videos from their phone, the same photo or video can be recovered from the
cloud account or any other device/ PC connected to the cloud using same
account.
If someone
has taken such photograph using Smartphone, then take it seriously and make
sure to get it deleted from their smartphone, the cloud and any other device
connected using the same account.
Protect
yourself from Cyber stalking:Cyber
stalkers show advances on a person repeatedly despite clear indication of
disinterest by such person. They use internet, email, social media or any other
form of electronic communication for stalking
Disable
location services for social media sites, mobile devices etc.
Refrain
from sharing your personal information like Phone number, e-mail address,
photographs with unknown persons
Consult
your relatives and friends, if you think you are a victim of Cyber stalking
Beware
of fake social media accounts- Not all the accounts are real and not all
information provided on accounts are true
Be
cautious while accepting friend requests from strangers.
Be
cautious with sensitive Browsing
One should
browse shopping or banking websites or apps only on a device that belongs to
him/ her or on a trusted network. Avoid using friend’s phone, public computer,
cyber cafe or free Wi-Fi for sensitive browsing as data can be stolen or
copied.
The
deleted data on your communication devices can be recovered
Be
careful while you give your mobile devices, PC’s for
servicing/repairing/selling:Personal
commuters and mobile devices consists private information’s which needs to be
erased before sending it for repairing, servicing or selling.
Protect
your communication devices:Prevent
others from accessing your devices by providing password, PIN, Pattern or
biometric information. Always install applications to your mobile phones,
computers, etc. from a trusted source only e.g. Play store, App store or from
official company websites
Report
if you find content related to of Child Sexual Exploitative and Abuse Material
(CSEAM)
Any
content related to of Child Sexual Exploitative and Abuse Material (CSEAM) such
as Rape/ Gang Rape (RGR) content should be report to the concerned social media
website
If anybody
of your acquaintance shares Child Sexual Exploitative and Abuse Material
(CSEAM) with you, it is your duty as a responsible citizen to inform the
concerned person that publication, collection and distribution of Child Sexual
Exploitative and Abuse Material (CSEAM) is illegal and he should refrain from
doing such activities.
You can
also report it on National Cyber Crime Reporting Portal (www.cybercrime.gov.in)
3.
Cyber awareness and hygiene for organizations
How to
deal with Child Sexual Exploitative and Abuse Material (CSEAM) in workplace?
All
organisations should have clear and strong HR policies on how to deal with
content on Child Sexual Exploitative and Abuse Material (CSEAM)
Organisations
should have clear rules for use of electronic devices provided by the
organisation
If any
employee is found possessing obscene or indecent content, proper investigation
and action should be taken against them
The
organisation should report any incidence of sharing and storage of obscene
content within the organisation to the police. The copy of the content should
be saved as an evidence with restricted access
All other
copies of the content should be deleted
They can
also report through National Cyber Crime Reporting Portal (www.cybercrime.gov.in).
Publication,
Collection and Distribution of Child Sexual Exploitative and Abuse Material
(CSEAM) is illegal
Under
Section 67 and 67A of Information Technology Act, 2000 makes publication and
distribution of any material containing sexually explicit act or conduct in
electronic form a punishable offence
Section
67B of IT Act, criminalizes browsing, downloading, creation, publication and
distribution of child pornography
Be
safe, Browse safe!
