
“Banking Spoof Call” And Other Scams. Protect Yourself!
If someone calls you claiming to be from your bank and says you need to transfer your money because your account is not secure, hang up immediately.
The FBI is warning about “banking spoof call” scams that have been bilking account holders out of thousands of dollars. People fall victim to the fraud because scammers disguise their actual number so the caller ID displays the financial institution’s contact information, according to FBI officials speaking to Chicago-based TV station ABC7 and Fox Business.
The FBI explained that the con artists, posing as bank representatives, attempt to establish trust with account holders by warning them about a fraudulent activity on their accounts. The fraudsters then deceive account holders into providing sensitive personal information or account numbers. Once they have the information, the fraudsters will transfer money into different accounts.
One account holder told ABC7 that she lost $40,000 after someone called from a number that matched the one on the back of her Chase debit card. The individual told her she needed to transfer her money to a “secure” account.
“They read me my account number,” she told the news outlet. “They had my account balance down to the penny.”
“We urge all consumers to ignore phone, text, or internet requests to move money or gain access to their computer or bank accounts,” Chase Bank told ABC7. “Banks and legitimate companies won’t make these requests, but scammers will.”
To avoid getting scammed, the FBI recommends doing the following:
1. Set up two-factor or multi-factor identification on your accounts.
2. Examine email addresses and URLs, and look out for misspellings or anything that looks out of the ordinary
3. Don’t click on unsolicited links that are sent in emails or text messages.
4. Don’t give out your username or password.
Victims who have experienced potential spoofing or phishing scams should report the incident online to the FBI through its Internet Crime Complaint Center: https://www.ic3.gov/.
How To Spot The Red Flags of a Scam
While the details of a scam may change, the “red flags” stay the same. To keep your accounts protected, Bank of America recommends learning how to recognize these red flags:
1. Impersonation. Scammers impersonate someone you trust, such as a representative from a bank or familiar organization, a friend, or a family member.
2. Emotion. Fraudsters try to manipulate your emotions, playing on feelings of love, fear, or sympathy. They want you to ignore your gut feelings or lie about the reasons for moving money.
3. False sense of urgency. Con artists claim there’s a problem that needs urgent action, rushing you into making a quick decision without thinking it through or consulting anyone you trust.
4. Rewards or threats. Scammers may offer money, a job, or a prize, claim that there is an emergency, or threaten you with legal action or notifying law enforcement.
5. Deception. Con artists may tell you to distrust bank employees, advise you to disregard the bank’s warning messages, or even coach you on what to say to bank employees, even when it’s a lie.
6. Unusual payment methods. Scammers ask people to send money through wire transfers, send gift cards, or non-traditional forms of payment, such as gold, cryptocurrency, or pre-loaded debit cards.
When you notice these red flags:
1. Stop. If someone asks you for personal information or for money and it feels off, trust your instincts and don’t do it.
2. Verify. Even if the request seems legitimate, it’s always a good idea to discuss it with someone you trust, such as a friend or family member. Or you can call your bank or credit card company.
3. Prevent. To help prevent scams, create complex passwords, use multi-factor authentication, and biometrics like Face ID.
Other Types of Scams
Not all scams involve banks. Some of the most common scams reported include:
1. Tech support. A message pops up on your computer or mobile device claiming that there is a virus or other problem with your device. Fraudsters pose as someone from a legitimate company and claim they can resolve the problem if you give them access to your device. This scheme is designed to scare you into exposing personal and financial information.
2. Romance scams. Scammers use social media or dating apps to build a believable relationship, only to ask for money.
3. Investment scams. Be wary if a so-called “investment manager” contacts you with a “great investment opportunity” with offers that promise you guaranteed returns, the chance to get rich quickly, or to double your money.
The CAPTCHA Scam
In this scheme, the scammers try to get you to install malware through the CAPTCHA verification process. Instead of using a legitimate CAPTCHA that asks users to identify images or click an “I’m not a robot” checkbox, the scammers set up a fraudulent page with instructions that appear to be part of the verification process.
After users click the checkbox—or after an error message appears—the page directs them to perform a series of keyboard commands, such as:
Press Windows + R (or Command + Space/Terminal-related commands on a Mac).
Press Ctrl + V (or Command + V).
Press Enter.
“The command is typically a…script that runs hidden, contacts an attacker-controlled server, and pulls down malware,” Brian Hussey, senior vice president of Howler Cell Threat Services, told HuffPost.
Once the malware is on your device, Hussey explained that “Tools … sweep the infected machine for saved passwords, session tokens, browser credentials and financial data, then quietly send it to the attacker.”
If you followed the scammer’s instructions but are now second-guessing your actions, Stanislav Kazanov, head of GRC, cybersecurity, and sustainability at Innowise, recommended:
1. Disconnect the computer from the internet immediately, either by unplugging the ethernet cable or turning off Wi-Fi.
2. Switch to an uncompromised device, like your phone on mobile data or a separate tablet
3. Change your most important passwords.
“Make sure you hit ‘sign out of all sessions’ wherever you can,” Kazanov told HuffPost. “If you do this on the infected machine, you’re just handing the new passwords right back to the attacker.”
Beware of AI Scams
Cybersecurity experts are warning about cybercriminals’ use of artificial intelligence (AI), which makes it possible to bypass antivirus and other detection systems faster.
The most effective types of deception are deepfake videos, photos, voice recordings, and documents that are hard to distinguish from the real thing. For example, a deepfake video can show a company leader saying something controversial or use an AI-generated voice of the leader to request a money transfer.
If you think something or someone is AI-generated and asks you for money:
1. Stop and evaluate if the request makes sense.
2. Verify the source, even if the request makes sense.
3. Don’t stay silent. Scammers count on silence. So, talk with friends and family about scams and any requests for money or information.
Source Links:
https://www.usatoday.com/story/money/2026/05/05/bank-spoof-call-scams-fbi/89945761007/
https://web.bankofamerica.com/en/security/library/different-types-of-scams
https://web.bankofamerica.com/en/security/scam-prevention
https://www.huffpost.com/entry/captcha-scam-internet_l_69e645cde4b09c81bf198a4b
https://web.bankofamerica.com/en/security/library/ai-use-cybercriminals







