Loading…
Loading…
Page 31 of 41.
Scammers send fake beta invitations for unreleased Microsoft or Xbox games, directing victims to phishing pages that steal Microsoft account credentials or install malware disguised as a beta client installer.
BrandScammers pose as brand managers reaching out via TikTok DM or email with attractive collaboration proposals, directing creators to fake TikTok 'business verification' portals that harvest login credentials and personal data.
BrandScam websites display fake Apple ID verification CAPTCHA prompts that instruct macOS users to open Terminal and paste a command to 'prove they are human', silently installing malware under the guise of Apple account verification.
BrandAttackers run automated credential-stuffing tools against Microsoft 365 business tenants, using email-password pairs from previous breaches to silently take over accounts, forward emails, and launch internal phishing campaigns.
BrandScammers use malware or malicious browser extensions to steal Google session cookies, bypassing two-factor authentication entirely and giving attackers persistent access to Gmail, Drive, and YouTube accounts.
BrandScammers use AI language models to craft Spotify phishing emails referencing specific songs in your listening history, your playlist names, or your Wrapped data to make fraudulent account-security messages feel unnervingly genuine.
BrandScammers send fake invitations to exclusive Disney+ feature betas — such as early access to a new interactive experience or 4K upgrade — collecting subscribers' login credentials or payment details through fraudulent onboarding portals.
BrandScammers impersonate Instagram's creator team, sending messages about a lucrative new monetisation programme that requires creators to pay an activation fee or submit credentials via a fake 'Instagram Creator Hub' portal.
BrandCriminals use AI-synthesised voices to impersonate Google's automated security system or Google account specialists, calling victims to warn of a breach and extracting Google account credentials or backup codes during the call.
BrandCriminals hijack a victim's mobile phone number via SIM swapping to intercept Netflix password-reset SMS codes, taking over the Netflix account and the linked payment card.
BrandScammers create Facebook accounts and ads mimicking official Meta or Facebook giveaway announcements, directing users to credential-harvesting pages or requesting advance payments to 'claim their prize'.
BrandScammers trick WhatsApp users into disabling their two-step verification PIN by sending convincing social messages, then take over the account using the now-unprotected SMS registration flow.
BrandScam TikTok accounts and videos impersonate TikTok's official channels to run fake giveaways, directing users to credential-harvesting forms or advance-fee payment pages under the guise of prize claims.
BrandCriminals use AI-synthesised voices to impersonate Microsoft IT helpdesk staff, calling employees to resolve a fabricated account or security issue and extracting Microsoft 365 credentials or multi-factor authentication codes during the call.
BrandCriminals deploy AI-powered bots on Telegram that impersonate Telegram's official support, engaging users in natural conversation before stealing account credentials, two-step verification codes, or cryptocurrency under the guise of account assistance.
BrandScam VPN applications in the App Store or distributed via fake Apple security alerts abuse Apple's trusted brand to collect subscription fees, steal network traffic data, or harvest credentials from iPhone and Mac users.
BrandAttackers test billions of email-password combinations from unrelated data breaches against Disney+ accounts, hijacking those where passwords are reused to access subscriptions, payment details, and linked Disney services.
BrandCriminals use AI to generate fabricated intimate images from publicly visible Instagram photos, then send extortion messages threatening to post them to the victim's Instagram followers unless a payment is made.
BrandCriminals hijack a victim's mobile phone number through a SIM swap to intercept Spotify's SMS password-reset code, taking over the account and potentially accessing linked payment details or Spotify for Artists data.
BrandScammers embed malicious QR codes in printed materials, fake receipts, or emails that mimic Apple iCloud storage or billing notifications, directing victims who scan them to credential-harvesting Apple ID login pages.
BrandScammers use AI-synthesised voices to impersonate Netflix customer service representatives on unsolicited calls, warning of billing problems or account suspensions to extract payment card details or Netflix account credentials.
BrandCriminals convince your mobile carrier to transfer your phone number to a SIM they control, then use PayPal's SMS-based account recovery to lock you out and drain your balance. The attack exploits PayPal's reliance on phone-number verification as a fallback authentication route.
BrandAI-generated voice technology is being used to mimic convincing phone support lines and fake human agents, pressuring Cash App users into sharing sign-in codes. Because Cash App has no official phone number, any inbound support call is already suspicious — but AI voices make the deception harder to dismiss.
BrandFraudsters place fake QR codes — on stickers, fake invoices, or in community groups — that appear to link to Zelle payment requests but instead lead to phishing pages or fraudulent payment flows that drain money or harvest banking credentials.
BrandAttackers use AI tools to craft individually tailored phishing emails that reference real business names, transaction amounts, and recent Stripe activity scraped from public sources — making the fake payout-hold or policy-violation notices far more convincing than generic templates.
BrandCriminals hijack victims' phone numbers by fraudulently porting them to a new SIM, then use Wise's SMS-based one-time passcodes to bypass login security, change the account email address, and initiate international transfers before the victim can react.
BrandFraudulent apps mimicking Revolut's design and branding appear in unofficial app stores, phishing sites, and search-engine ads. Once installed, they capture login credentials, harvest two-factor codes, and can access the device's SMS messages.
BrandAutomated tools use email-password combinations leaked in unrelated data breaches to break into Robinhood brokerage accounts where users have reused passwords, allowing attackers to liquidate investments and initiate fraudulent withdrawals.
BrandCriminals use AI-generated deepfake videos of Binance executives to promote fake cryptocurrency giveaways on YouTube and social media, directing victims to deposit crypto to 'double their funds' — a straightforward theft dressed as an official Binance promotion.
BrandCriminals port Coinbase users' phone numbers to a SIM they control, intercept Coinbase's SMS verification codes, and rapidly drain cryptocurrency holdings. Coinbase's large retail user base and the irreversibility of crypto transactions make SIM-swap attacks especially lucrative.
BrandCriminals embed fake CAPTCHA challenges on sites mimicking MetaMask's download page or support portal. Completing the CAPTCHA triggers a clipboard-injection command that, when pasted into a system prompt, installs malware designed to steal seed phrases and drain connected wallets.
BrandCompromised or malicious websites display fake 'Ledger Live requires a browser update' pop-ups that prompt users to download a malicious executable. The malware targets Ledger Live configuration files, recovery-phrase data, and browser-stored passwords.
BrandFake Coinbase accounts on X/Twitter, Instagram, and Facebook run giveaway campaigns that require victims to 'verify' their wallet address by connecting it to a malicious site or sending a small amount of crypto to 'confirm eligibility' — both of which result in fund theft.
BrandCriminals use compromised social-media accounts or fake Kraken profiles to send direct messages advertising exclusive cryptocurrency giveaways that require victims to visit a phishing site, share credentials, or connect a wallet — leading to account compromise or fund theft.
BrandCriminals compromise or clone OpenSea Discord servers and post fake mint announcements with wallet-connect links. Victims who connect their wallet and approve the contract interaction have tokens transferred out by a drainer script — often within seconds.
BrandCriminals use AI-powered video deepfakes to impersonate Binance compliance or security officers on video calls, convincing users that their accounts face suspension unless they transfer cryptocurrency to a 'verified holding address' controlled by the attackers.
BrandMalicious websites branded to look like Coinbase login or verification pages present fake CAPTCHA challenges that, when 'completed,' inject a system command into the clipboard. Running the command installs malware that steals Coinbase session cookies and browser-stored credentials.
BrandCriminals create fresh PayPal accounts using stolen identity data and rapidly exploit the brief window before fraud controls engage — using the new accounts to make purchases, receive fraudulent payments, or move stolen funds while impersonating PayPal's platform legitimacy.
BrandFraudsters print or send fake QR codes styled with Coinbase branding that link to phishing pages mimicking Coinbase's login portal or a fake 'crypto ATM deposit' interface, harvesting exchange credentials or directing victims to send funds to attacker-controlled wallets.
BrandAI-generated voice calls impersonate Revolut fraud-prevention agents, claiming suspicious transactions are in progress and pressuring victims into confirming a one-time code or approving a 'reversal transfer' — actions that in reality hand over account access or authorise a fraudulent payment.
BrandMalicious websites targeting PayPal users display convincing browser-update overlays that, when clicked, install keyloggers or form-hijacking malware that captures PayPal login credentials and card details the next time the victim visits paypal.com.
BrandCriminals port Kraken users' phone numbers to SIMs they control, intercept SMS-based two-factor authentication codes, and use password-reset flows to gain full account access before draining cryptocurrency balances and withdrawing fiat funds.
BrandAI-powered tools allow criminals to craft highly personalised phishing emails or DMs targeting MetaMask users, referencing their known wallet activity, NFT holdings, or DeFi positions to create convincing 'security alerts' that lead to seed-phrase harvesting sites or wallet-drainer contracts.
BrandCounterfeit versions of the Ledger Live application distributed via phishing sites, app-store lookalikes, and search-engine ads present a fake 'wallet restore' flow that requests the victim's 24-word recovery phrase and immediately transmits it to attackers.
BrandFake OpenSea accounts on Twitter, Instagram, and TikTok run NFT 'giveaway' campaigns that funnel followers to wallet-connect phishing sites, where approving a transaction drains existing NFTs and tokens from connected wallets.
BrandPhishing sites mimicking Trezor's wallet-restoration interface embed fake CAPTCHA challenges that, once 'completed,' either request the seed phrase directly as the 'verification step' or deliver malware that scans the device for cryptocurrency-related files.
BrandCounterfeit Robinhood mobile apps distributed via phishing sites and search-engine ads capture login credentials and two-factor codes the moment a user signs in, potentially exposing brokerage accounts containing investment portfolios and linked bank accounts.
BrandAI-generated voice calls impersonate Wise customer-support agents claiming a large international transfer is pending approval, pressuring victims into sharing their OTP or authorising a payment reversal — actions that result in account compromise or fraudulent outbound transfers.
BrandCriminals register new Cash App accounts using stolen identity details, then use these accounts to receive stolen funds, process fraudulent payments, or pose as trusted Cash App users to scam marketplace sellers and peer-to-peer payment recipients.
BrandFake Kraken accounts on X/Twitter and Telegram run 'deposit and double' or 'wallet-verify' giveaway campaigns, harvesting cryptocurrency from victims who believe they are participating in an official Kraken promotion.
BrandAutomated scripts use email-password pairs from unrelated data breaches to log into Binance accounts where users have reused passwords, giving attackers access to cryptocurrency balances, trading history, and API keys before victims know they have been compromised.
BrandScammers use deepfake video technology to impersonate Coinbase compliance officers in video calls, claiming a new KYC requirement must be satisfied immediately or the account will be locked — pressuring victims into sharing identity documents or account credentials during the call.
BrandFraudulent QR codes distributed at cryptocurrency events, online forums, and social media claim to link to MetaMask's wallet-connect or setup flow but instead direct users to phishing pages that harvest seed phrases or execute wallet-drainer approval transactions.
BrandCriminals use AI tools to craft individualised phishing emails referencing Ledger customers' names, order numbers, and shipping addresses from the 2020 data breach, making fake 'Ledger Live update' or 'wallet recovery' emails appear shockingly legitimate.
BrandAI-powered phishing campaigns target Kraken users — particularly professional and high-volume traders — with tailored emails that reference real trading volume, account tiers, or recent market activity to make fake 'compliance review' or 'account verification' requests appear credible.
BrandCounterfeit Binance applications distributed via phishing sites, third-party APK sources, and search ads capture login credentials and intercept two-factor codes in real time, handing attackers instant access to exchange accounts and cryptocurrency balances.
BrandCounterfeit MetaMask apps on unofficial stores and phishing sites simulate the wallet creation and recovery flow but transmit newly created or imported seed phrases to attackers, draining any funds transferred to the newly set-up wallet.
BrandAutomated tools test breached email-password combinations against Wise's login, exploiting password reuse to access multi-currency accounts that may hold balances in several currencies, enabling attackers to initiate international transfers before the victim notices.
BrandCounterfeit standalone Zelle apps distributed through phishing sites and search ads mimic the official Zelle experience to capture users' banking login credentials — exploiting the fact that many users are unfamiliar with whether Zelle operates as a standalone or bank-embedded service.
BrandCriminals use AI-generated video to impersonate Revolut Business account managers in video calls with small-business owners, convincing them to share account credentials, approve large transfers, or submit identity documents under the guise of routine account reviews.
BrandCriminals use compromised or cloned social accounts to send direct messages to NFT collectors claiming an exclusive OpenSea giveaway has been reserved for them, linking to wallet-drainer sites that drain high-value NFTs on connection.
BrandCriminals SIM-swap the mobile number registered on a Stripe account to intercept 2FA codes, change the account email, and redirect future payouts to attacker-controlled bank accounts — causing both immediate financial loss and disruption to the merchant's payment operations.
BrandCriminals open new Robinhood accounts using stolen or fabricated identity details, exploit new-account bonuses, and use the accounts as fraud infrastructure — including receiving fraudulent ACH transfers or processing stolen debit card transactions — while Robinhood's platform lends apparent legitimacy.
BrandAI-generated voices impersonate Zelle's bank-fraud notification system in automated calls, claiming an urgent transfer is in progress and that the victim must confirm their banking credentials or approve a 'reversal' to stop it — actions that instead authorise new fraudulent payments.
BrandAI tools craft personalised phishing emails referencing a Revolut user's real transaction history, travel spending, or subscription details to make fake 'account review' or 'unusual activity' alerts appear shockingly specific and credible.
BrandFraudsters place or post physical cards printed with DHL branding and a QR code, claiming a parcel missed delivery and asking the recipient to scan the code to rearrange it. The QR code leads to a phishing page that steals card details or login credentials.
BrandAI-generated voice calls impersonate IRS agents or inspectors, delivering scripted threats about unpaid taxes, warrants, or identity theft with a realism that traditional robocalls cannot achieve. The IRS initiates contact by postal mail, not by phone calls demanding immediate payment.
BrandCriminals use AI tools to craft HMRC phishing emails or texts that include the recipient's correct name, National Insurance number, employer, and recent filing details, making the message far harder to dismiss than traditional mass-phishing.
BrandScammers create convincing lookalike apps branded as the official USPS Informed Delivery app, distributed through unofficial download links or third-party stores. Once installed, the malicious app harvests credentials, banking data, and SMS two-factor codes.
BrandVictims receive a video call featuring a deepfake avatar dressed as a DVLA enforcement officer on a professional-looking background, demanding payment for alleged vehicle registration offences or threatening immediate vehicle seizure. The DVLA never conducts enforcement via unsolicited video call.
BrandA phishing email styled as a FedEx shipment notification redirects victims to a CAPTCHA page that secretly pastes a PowerShell command into the clipboard and instructs the user to run it, installing malware under the guise of verifying a delivery.
BrandCriminals use a Royal Mail-branded phishing campaign to harvest mobile numbers and personal details, then use that information to perform a SIM-swap that transfers the victim's phone number to an attacker-controlled SIM, enabling interception of banking two-factor codes.
BrandPhishing emails impersonating the Social Security Administration trick victims into surrendering my Social Security account credentials, or help attackers register a fraudulent account in the victim's name before the real person does, redirecting benefit payments.
BrandCriminals use billions of username-password pairs leaked from other breaches to try to break into DHL MyAccount portals at scale. Once inside, they change delivery addresses, intercept high-value parcels, and harvest stored payment cards.
BrandCriminals affix fake stickers bearing a QR code and USPS branding over or near real parcel lockers, telling recipients to scan the code to retrieve their package. The QR destination is a phishing site that captures login credentials or payment details.
BrandAI-synthesised voices impersonate DWP staff in calls that threaten suspension of Universal Credit or other benefits unless the recipient immediately verifies their identity or pays an alleged overpayment. The DWP never demands same-day payment by phone and always communicates formally through your online journal or post.
BrandScammers distribute fake lookalike HMRC apps outside the official app stores, claiming to offer tax rebate tracking or self-assessment help. Once installed, these apps steal Government Gateway credentials, banking logins, and SMS two-factor codes.
BrandFraudsters attach QR-code stickers to Royal Mail drop-boxes, post offices, and missed-delivery slips, claiming recipients must scan and pay a surcharge before their parcel can be released. Royal Mail never takes payment via QR codes on physical signage or cards.
BrandFraudsters use AI video-call technology to present a deepfake avatar dressed as an HMRC compliance officer on a professional background, demanding immediate payment of alleged unpaid tax or threatening criminal prosecution. HMRC never conducts enforcement through unsolicited video calls.
BrandCriminals craft Service Canada phishing emails using AI to include the recipient's correct SIN fragment, employment details, and current benefit amounts, making the message appear to come from a genuine government source rather than a mass-phishing campaign.
BrandScammers distribute fake apps branded as the Centrelink or myGov app outside the official app stores, targeting Australians who receive government payments. These apps harvest myGov credentials, Tax File Numbers, and banking details linked to benefit accounts.
BrandA FedEx-branded phishing campaign collects mobile phone numbers and personal data that fraudsters then use to perform a SIM hijack, taking over the victim's number to bypass two-factor authentication on banking accounts.
BrandAI-synthesised voices impersonate Centrelink staff in calls that threaten to suspend welfare payments unless the recipient immediately confirms their banking details or myGov credentials. Services Australia never demands account details over an unsolicited phone call.
BrandAutomated attacks use email-password pairs from unrelated data breaches to break into My Service Canada Account (MSCA) portals. A successful login allows attackers to redirect Employment Insurance and Old Age Security direct deposits to their own accounts.
BrandFraudsters send physical letters or printed cards bearing HMRC branding and a QR code, claiming the recipient owes tax and must scan the code to avoid a penalty. HMRC never directs taxpayers to pay through QR codes on unsolicited physical correspondence.
BrandScammers use stolen identity details to register a myGov account in a victim's name before the victim does, granting access to Centrelink services and enabling benefit claims or payment redirections in the victim's name.
BrandA phishing email mimicking a USPS delivery alert routes victims to a fake verification page that secretly loads malware instructions into their clipboard and prompts them to paste and run the command, handing the attacker full access to the device.
BrandVictims receive an unsolicited video call from a convincing deepfake avatar posing as a Service Canada case officer, claiming their EI claim is under investigation or their SIN is at risk and demanding immediate verification or payment to prevent account suspension.
BrandCriminals distribute a fake DHL tracking app through phishing SMS links. The app mimics the real DHL app but secretly steals login credentials, intercepts SMS two-factor codes, and can capture banking details from overlay attacks on financial apps.
BrandAI tools combine the recipient's name, address, recent purchase history from breach data, and neighbourhood delivery patterns to craft USPS phishing messages that appear to reference a real, expected parcel — making them far more convincing than generic delivery scam texts.
BrandCriminals use DWP-branded phishing to harvest Government Gateway credentials and then either take over existing Universal Credit accounts to change bank details, or create fraudulent new claims in the victim's name using stolen identity data.
BrandFraudsters send fake DHL notifications about parcel-locker assignments, directing recipients to a phishing site to retrieve an access code or pay a locker-release fee. DHL Packstation access codes are sent only through the verified DHL Parcel app or SMS to the registered number — never through an unsolicited external link.
BrandAI-generated voice calls impersonate DVLA officials threatening immediate suspension of a driving licence or vehicle registration unless a fine is paid by phone. The DVLA does not make unsolicited calls demanding immediate licence-suspension fees.
BrandMalicious websites triggered by FedEx-branded phishing links display a convincing browser-update popup that, when clicked, downloads malware instead of a legitimate update. The real FedEx website never prompts a browser update as a condition of viewing tracking information.
BrandCriminals deploy deepfake-video technology to stage a convincing IRS audit interview over a video call, demanding document uploads and immediate payment of alleged tax liabilities. The IRS does not initiate audits through unsolicited video calls.
BrandIRS-branded phishing pages harvest the personal details fraudsters need — name, SSN fragment, date of birth, and mobile number — to perform a SIM-swap attack that intercepts two-factor codes for banking and irs.gov accounts.