SEE BELOW FOR CURRENT LOCAL SCAMS

Every day, scores of people across the United States fall victim to predators that seek to take advantage of the vulnerable. Unfortunately some in Suffolk County have fallen victim to some of these scam artists. In the following area you will find some of the more common scams that are reported to the Police Department. More importantly you will find those prevention tips to help keep you from becoming a victim.

SPOOFING PHONE CALLS

The Suffolk County Police Department is warning residents of a phone scam that involves callers spoofing a Suffolk County Police Department phone number and demanding payment for an alleged warrant for the victim’s arrest.

Recently, a Melville man reported to police he received two scam phone calls. During the first call, the victim was instructed to remain on the line, drive to his bank and await further instructions on how to clear up a warrant for criminal activity. During the course of the call, the man received a second phone call, which displayed a legitimate Second Precinct phone number on his caller ID. The caller identified himself as a police officer and provided a fake badge number and threatened to arrest the man if he did not comply with the instructions from the first caller.

The scammers used spoofing software to enable the calls to appear as if they were coming from legitimate sources.

As a reminder, the Suffolk County Police Department will never call the public asking for money and will produce identification upon the request of a member of the public. If a member of the public has any doubt concerning the identity of someone who represents to be a police officer, they are encouraged to call the police to confirm such identity.

ZIKA VIRUS PREVENTION/PROTECTION PRODUCT SCAMS

The office of the Attorney General announced that their office issued cease and desist letters to seven companies that marketed products with claims that they prevent or protect against the Zika virus even though the products are known to be ineffective for that purpose. Each of the seven companies advertised either ultrasonic devices or botanical oil-based products with claims that the products would protect against the Zika virus by repelling mosquitos, even though the products contain no EPA-registered insect repellents with at least one of the five CDC-recommended active ingredients. Makers of ultrasonic devices claim that they repel mosquitos by emitting a high frequency buzz. Numerous scientific studies have found that ultrasonic devices do not repel mosquitoes and may even attract them. The makers of botanical oil-based products, including wrist bands, bracelets, patches and stickers contain oils that are not EPA-registered insect repellents. Instead, the Attorney General advised consumers to look for EPA=registered insect repellents containing at least one of the following active ingredients: DEET, Picaridin (also known as KBR 3023, Bayrepel, and Icaridin), IR3535, Oil of Lemon Eucalyptus, and Para-Menthane-Diol. Only products containing at least one of these ingredients have been recommended by the CDC as the safe and effective way of protecting against the Zika virus. Zika virus is primarily spread by infected mosquitoes, although it can also be spread by sexual contact or blood contact. Zika virus can cause symptoms including mild fever, rash, joint pain, and conjunctivitis (red eyes). Zika poses a serious threat to women who are pregnant, or trying to become pregnant, because it may cause microcephaly, a serious birth defect that affects brain development.

To prevent bites from potentially infected mosquitoes, the Centers for Disease Control recommend that consumers use only EPA-registered insect repellents with at least one of the five CDC-recommended active ingredients. These repellents contain ingredients that have been clinically proven to effectively repel mosquitoes. Attorney General Schneiderman advised consumers to avoid ultrasonic and boteanical mosquito repellents, as well as Vitamin B-based repellents, which have also been found to be ineffective. Products that are currently being sold to New York consumers that claim to prevent the Zika virus, even when these products contain none of the CDC-approved active ingredients include*:

• Wildheart Outdoors Natural Mosquito Repellent Bracelet
• MosQUITo Repellent Bracelet Wristband
• Neor Mosquito Repellent Bracelet
• Kenza High Quality Zika Mosquito Repellent Smiley Patch
• Mobile Pro Grear Zika Shield Mosquito Repellent Bands
• STAR Ultrasonic Pest Repeller
• iGear iGuard 2.0 Ultrasonic Insect Pest Repellent

*Six of the seven companies that received cease and desist letters from the Attorney General’s office for deceptively marketing products as “Zika-preventive” have removed their advertising, excluding Neor Mosquito Repellent Bracelet Consumers should also be aware that there is no cure for the Zika virus as of this date, and prodcuts claiming to be cures are deceptive. New York consumers are also advised to follow these CDC recommendations to protect against the Zika virus:

• Avoid travel in areas with active mosquito-borne transmission of the Zika virus. These areas can be found on the CDC’s website.
• If one must travel to one of the identified areas, consumers should:
  • Wear pants and long sleeves
  • Stay in places with air conditioning and screens on windows and doors
  • Sleep under mosquito bed nets, and
  • Treat clothing with permethrin or purchase pre-treated clothing.

"GOFUNDME" AND CROWDFUNDING SCAMS

Recently, the New York State Attorney General announced that he has filed a law suit against a woman who illegally profited from funds raised on the charitable donation site GoFundMe.com.  The woman created a GoFundMe page and raised funds for a memorial scholarship fund, but kept more than 50% of the profits for herself. Crowdfunding as a source for charitable giving is growing in popularity and allows for direct peer-to-peer donations, instead of giving contributions to organizations themselves. It is important as consumers to be aware of scams involving crowdfunding websites and follow a few important tips to stay informed and be safe. Tips for Consumers There are many different crowdfunding platforms. Make sure you understand how the platform you are using works:

• Use reputable, well-established websites with a known track record. Some crowdfunding websites vet projects and others do not. You should understand what the website requires from a campaign before it is posted.
• Know what you are getting for your contribution. In some cases your contribution will be a donation, and in others it may entitle you to a product or a share of a company.
• Know what protections the crowdfunding platform provides. In most cases, the platform will not reimburse you if a campaign fails to deliver what it promised.
• Your first line of defense when donating is to check the terms and conditions of crowdfunding websites. There are several important questions you should ask when reviewing terms and conditions:
• Is the website vouching for the credibility of the charitable cause?
• Does the website check to see if funds raised are going towards the intended purpose stated on the website?
• If I believe my donation did not go towards its intended purpose, what recourse do I have to get a refund?
• Understand if there are any fees associated with each contribution and whether a crowdfunding website is retaining a portion of your contribution.
• Don’t give out sensitive personal information such as a Social Security number or password to anyone who solicits a contribution from you. When donating online, make sure the website is secure and includes ‘https’ in the web address. Donating with a credit card provides more protection than a check while still offering a paper trail documenting the transaction.

Thoroughly research the project before contributing:

• Be wary of campaigns with few details. Credible projects will have established web and social media presence, and offer regular updates.
• Check the campaign creator’s social media accounts to confirm identities and real-world connections.
• Many crowdfunding platforms will let you write to a project’s creator. Ask questions and review how the creator has responded to others.
• Compare details with other campaigns for similar products. If it seems too good to be true, it usually is.

FEDERAL STUDENT TAX SCAM

USA Today  (6/19, Tompor) reports scammers are targeting college students under the guise of collecting a “federal student tax.” A spokesman for the IRS, Luis Garcia says this particular scam is unusual because the tax mentioned doesn’t even exist. Even more troubling is it appears the scammers know how to tailor their phone calls to the potential victims they're calling. The IRS is warning to “guard your personal information, do not overshare on social media and realize that an e-mail can easily contain a link to a site that will imitate an official-looking website.”

SUMMER SCAM

The office of the Attorney General reminds New Yorkers of common scams that occur during the summer and offers tips to protect against abuse. Scam artists are known to prey on New Yorkers, particularly during summer months, as consumers embark on home improvement projects and plan family vacations. The Attorney General urges New Yorkers to notify his office of any summer scams designed to dupe unsuspecting consumers.

For more information, go to: https://ag.ny.gov/press-release/2016/ag-schneiderman-reminds-new-yorkers-his-guide-protect-consumers-summer-scams

Smartphone Users Beware of Malware Targeting Mobile Devices

The FBI and the IC3 have announced the discovery of various malware attacks on the Android mobile device operating systems. Some of the newest versions of this type of malware are Loozfon and FinFisher. Loozfon is an information-stealing piece of malware. Like many of the scams that we see in the County and across the Nation, the criminals tactics to lure victims vary. In today’s economic environment, criminals often turn to the “easy payday” or “quick payday” scams. One version announced by the IC3 is a work-at-home “opportunity” that promises a profitable payday just for sending out e-mail. A link within these advertisements leads to a website that is designed to push Loozfon on the user’s device. The malicious application then steals the contact details from the user’s contact list or address book. FinFisher is spyware that is capable of “commandeering” the components of a mobile device. Once FinFisher is active on an infected device, the mobile device can be remotely controlled and monitored no matter where the Target is located. FinFisher can be easily transmitted to a smartphone when the user visits a specific web link or opens a text message masquerading as a system update. The IC3 release warning about this scam, and what you can do to protect yourself against this vulnerability, can be found at: https://www.ic3.gov/Media/PDF/Y2012/PSA121012.pdf.

FBI SCAM ALERT ISSUED 8/7/2012

The FBI released an alert titled “Citadel Malware Continues to Deliver Reveton Ransomware in Attempts to Extort Money”. To read this, and other cyber scam alerts, please visit the FBI website at https://www.ic3.gov/Media/PDF/Y2012/PSA121130.pdf. In addition to the scams listed, there are several tips to assist you in protecting yourself from these predators.

SCAMS SEEN IN SUFFOLK

UNITED NATIONS FUND BENEFICIARY LETTER

The Computer Crimes Unit has seen incidents where residents of Suffolk County have been contacted via e-mail and advised that they were beneficiaries of a fund being monitored by the United Nations. In order to recoup these funds, they were advised to respond to the e-mail with personal identifying information. By responding to this e-mail and providing this information, you are giving them the tools or “items of information” that will likely make you a victim of identity theft. While this particular scam involves the criminals trying to mask their scheme by using the United Nations, there are a few versions (the use of different organizations) of this type of scam being perpetrated throughout the world.

CRAIGS LIST SCAMS

Realizing the potential for victimization on its site, Craig’s List has taken the proactive step to include a section on their website that deals with scams. It provides the user guidelines on “how not to become a victim”. Unfortunately, all too often, users of Craig’s List and other similar sites gloss over or do not read these warnings.

1. The Fake Cashier’s Check – You are advertising an item for sale or an apartment for rent. You receive an inquiry from a potential buyer who wants to purchase/rent and they are going to send you a cashier’s check (in total/as a deposit). When you receive the check you realize that it is far more than you expected. The potential purchaser e-mails/calls you asking that you send the excess amount back to them via a money transfer service (i.e. Western Union). The bank will cash the official looking cashier’s check, when it is determined that it is a fraudulent check, the bank comes to you looking for its money. Since you wired the “overpayment” to the potential buyer, you are out that money.
2. Bait Item Scam – You respond to an advertisement for a rental apartment. The listing advertises an apartment in a desirable area, with amenities that seem almost too good to be true. The “owner” says that he is overseas in a church mission helping children. You inquire about the ad and he e-mails you that because he is overseas, he can’t get back to show you this one of a kind gem at an unbelievable price. He will do you a favor and hold the apartment for you if you can wire him a good faith deposit. You wire him a deposit and you wonder why you never hear from him again. You went for the bait and are now a victim of a scam. This scam can be for any high value item. If the offer sounds too good to be true, it probably is.

NOTE: If you should choose to meet someone from an auction/resale site in person, do so in a public place, in view of a number of other people, and if at night, in a well-lighted area. Consider bringing another adult with you when you meet an unknown party. These considerations are recommended for both “buyers” and “sellers”.

“YOU HAVE BEEN SELECTED” SCAMS

Have you received an e-mail or a “pop-up” stating that you have been selected to receive a high value item for “free”? Many variations of this type of scam are circulating the internet and can be in the form of “pop-ups”, unsolicited e-mails, or posting on social media sites. They offer items like the newest I-Phone, I-Pad, or any of a number of highly desirable or newly released items. By clicking on the link contained within the web or e-mail content, you are directed to an “online survey” or to a page where you are asked for personal information to allow the delivery of the item you have “won”. When completing the fields, you are providing all the information necessary for the criminal to victimize you. As is the case in one recent scam, the cell phone number you have provided in the “survey” may have enrolled you in a “text message service scam” where every text message you send from that point forward will result in exorbitant fees. REMEMBER, if it sounds too good to be true, it often is.

TELEPHONE CON-ARTISTS

Persons responsible for this scam call and claim that the potential victim has won a prize ranging from I-pads, vehicles, and a number of other highly desirable items. During the telephone call the caller offers to arrange delivery of the item if he/she pays the “tax” or “handling fee” using a credit card. The caller will continue with high pressure tactics and will often state that this is a one-time offer that must be completed during the call.

If you are asked to pay in order to claim an item that you have “won” or is “free”, you are likely the potential victim of a scam.

What to do if you are “cold called” about winning a desirable item:

• Do not provide any financial or personal information. The scammer can use this information to make you a victim of identity theft.
• Do not provide any credit/debit card information to the caller.
• Do not wire money. The callers might ask you to use a money transfer service (i.e. Western Union) if you are afraid to give a credit card. Using this type of service is just like sending cash, and once you send it there is little chance that you can recoup it.
• Do not trust the caller ID. Advances in technology allow scammers to disguise their area code to make it look like they are calling from a local number. They use this “spoofing” technology to mask the fact that they are actually calling from anywhere in the world.
• Report this information to the FTC at 1-877-FTC-HELP or report the incident to the Suffolk County Police.

DIVERSION SCAM TO COMMIT BURGLARY/THEFT

This type of scam generally targets the elderly, but can also be attempted on any unsuspecting resident. The “diversion burglary” usually involves an attempt to lure a resident from his/her house or apartment by using a ruse. The ruse can involve a wide variety of tactics such as pretending to be with a public utility and requesting that you help them investigate an issue on the property, asking for assistance in “jumping their car” which broke down near the house or using your portable phone, pretending to be conducting a survey and asking you to step outside, and any other scheme to get the resident outside. After stepping outside, and while your attention is diverted, a second person slips into the residence through an unlocked door or window. Once inside, the thief grabs valuables and leaves before you return to the residence. Sometimes victims are not even aware the theft has occurred until they go to the jewelry box to wear a particular pair of earrings and realize their entire collection of jewelry is missing. During the spring and summer months, beware of strangers that engage you outside of your residence (i.e. while performing yard work) as all they need to do is distract you while their counterpart sneaks in the door that you likely left unlocked.

TO PROTECT YOURSELF from becoming a victim of this type of scam:

• If someone knocks on your door saying they are with a public utility, ask them for identification, what section or office they work for, and telephone that agency to verify his/her identity before having any further interaction.
• If someone you do not know knocks and asks you to step outside, lock the door and tell them that you are not interested. If they are asking your assistance like the use of your phone, do not open the door and lock it. If you wish to help them ask them for the number, you place the call and relay the message to the person they were looking to contact.
• If something does not feel right, call 911. Try to take note of the person’s physical description, the direction they go when they leave the property, and if you see them get into a car, the description of the car.

IMPORTANCE OF PASSWORD SECURITY EFFORTS

Hackers like to brag about their exploits! In today’s “connected” world, their bragging does not occur with the spoken word, but by posting the posting of their exploitation efforts in various locations on the web. A recent report by splashdata.com covered their review of hackers’ online posts and the frequency that the passwords in the “hacked” or compromised accounts appeared in these posts. Below is a listing of the most frequently compromised passwords. If you use one of these passwords, or any other easily “crackable” password, please review the tips listed in the section below. These tips will assist you in locking down your cyber identity and other important information stored on your devices.

INTERNET TIPS

The internet is a great tool for a great number of activities. Legitimate uses of the internet include banking, keeping in touch with friends/family, sharing photographs, learning, gaming, and many other activities. Unfortunately some criminals use this tool to defraud unsuspecting users of the internet. Here are a few tips that you can use to protect yourself online.

• Passwords – Protect yourself by using strong passwords. When creating a password, it is suggested that you consider using the following tactics.
  • Length of password – 8 or more characters long
  • Make it complex – Use a combination of letters, punctuation, symbols, and numbers. For letters use a combination of upper and lower case letters. Do not use words that can be found in the dictionary.
  • Change passwords often – Establish a set schedule for changing passwords (i.e. once every three months).
  • Variety – Do not use the same password for multiple accounts.
    • An example of a strong password using these techniques: Fh7r#Qp2
  • Protect your passwords – Never give your password to anyone. If you think your password has been compromised, change the password immediately!
• Anti-Virus Protection – The use of an anti-virus program is one of the main components necessary to protect yourself and your information. Without an antivirus program you are vulnerable to infection from a virus/worm that:
  • Is hidden in an e-mail/e-mail attachment
  • Is “spyware” – this tactic may include keyloggers (to capture user names/passwords), unknowingly giving another control of your computer, and the ability of the “scammer” to monitor each and every move you make on the computer.
  • Is contained on a corrupt webpage.
    • Potential vulnerabilities:
      • Identity Theft
      • Access to personal information (Usernames/Passwords, account balances, account numbers, etc.)
      • Slowing of computer performance or total incapacitation of the computer/device
  • Purchasing anti-virus software – There are a number of vendors offering quality anti-virus software. The products that these vendors offer contain different features. Review the options and pick the one that suits your needs best. Be wary of ads on the Internet that offer downloadable anti-spyware. In some cases, these products may be fake or may contain spyware or other malware. When purchasing anti-virus software it is best to shop at a store you trust. Whatever product you choose, it is important to keep the product up-to-date. Many of the commercially offered products contain a feature to allow for automatic program updates and system scans.

E-mails - While the use of e-mail is a great tool for e-commerce, keeping in touch with friends, and other legitimate reasons, e-mail is not used without risk. To better protect yourself:

• Do not open an e-mail from someone you do not know.
• Do not reply to SPAM E-MAILS. By responding to a spam e-mail you are letting a potential scammer know that your e-mail is a valid e-mail address.
• Always use caution when you send an e-mail. Do not include personal information (i.e. social security numbers, banking account numbers, physical address, etc.).

DISCLAIMER

While the Suffolk County Police Department believes the information contained above is reliable, human or mechanical error remains a possibility. The Suffolk County Police Department does not guarantee the accuracy, completeness, timeliness, or sequencing of information contained within the preceding sections. The Suffolk County Police Department shall not be responsible for errors or omissions, or for the use of, or results obtained from the use of, the information contained herein.

Updated: 03/21/2019