Brampton woman loses over $200,000 to romance scam

14.11.24 06:05 PM - Comment(s) - By Kyle

A woman from Brampton is devastated after losing over $200,000—her entire life savings—to a romance scam.

Original Article By: Pat Foran

CTV News Article

CTV News Toronto agreed to use the pseudonym "Anne" to protect her identity.

Anne explained that two years ago, she received a friend request from a man seeking friendship. "He said he was looking for a friend, and he came across as a very nice person, always telling me I sounded genuine and that he’d like to visit me in Canada," Anne shared.

Over the next year, the man confided in Anne, saying his wife had died of cancer and that he had two sons in need of money for surgeries. He told her he was working in Texas on a six-month contract and expected to receive $5.6 million but needed temporary financial help.

Initially, Anne resisted sending money, but he sent her roses and continued to persuade her. "He pleaded with me and said, ‘You seem like such a nice person; if you could just help me out,’ and eventually, I did," Anne said.

Anne eventually grew concerned after realizing she had given substantial amounts of money to a man she had never met in person. "In a year’s time, he borrowed all my savings—over $200,000," she said. Ultimately, Anne lost $230,000.

Romance scams are among the three most common fraud types in Canada. According to the Canadian Anti-Fraud Centre, Canadians lost over $52 million to these scams last year, with nearly $23 million lost in the first half of 2024 alone.

Cybersecurity experts explain that romance scammers target individuals online, developing relationships and claiming financial distress. They promise to repay the money but offer excuses for not meeting in person. Once sent, the money is nearly impossible to recover.

Anne says she feels devastated, embarrassed, and humiliated for giving her life savings to a stranger. "I’m very hurt, and I keep thinking of all the other things I could have done with that money—but now it’s gone," she said.

Protect your assets!

To protect against the rising threat of online scams, it’s essential to approach digital interactions with caution and skepticism. Scammers today use a range of tactics, from;

Phishing Emails
Phishing emails are fraudulent messages that aim to deceive recipients into revealing personal information, such as passwords, credit card details, or social security numbers. These emails often look like they come from legitimate sources—such as banks, well-known companies, or government agencies—and can appear highly convincing, sometimes even copying the logo, email format, and language style of trusted organizations.

Here are key signs of phishing emails and tips for recognizing them:

1. Urgent or Threatening Language:

  • Phishing emails frequently use scare tactics, such as warnings that your account will be suspended or that there’s been suspicious activity. This pressure tactic is meant to make you act quickly without thinking.Unfamiliar Sender or Email Address: Often, phishing emails come from addresses that don’t match the organization they claim to represent, with slight misspellings or added numbers. It’s always wise to check the sender's email carefully.

2. Unusual Links or Attachments:

  • Phishing emails often contain links that lead to fake websites designed to capture login credentials. Attachments, on the other hand, may contain malware. Hover over any link to see the actual URL before clicking, and never open unexpected attachments.

3. Generic Greetings and Mistakes:

  •  Many phishing emails use generic greetings like “Dear Customer” rather than your name. Poor grammar and spelling errors are also red flags, as legitimate organizations generally have more polished communication.

4. Requests for Personal or Financial Information: 

  • Reputable organizations rarely request sensitive information, like your password, bank details, or social security number, through email. If an email asks for this, it’s likely a scam.

To protect yourself, keep security software up to date, use strong passwords, and avoid clicking on links or downloading attachments in suspicious emails. When in doubt, contact the organization directly using official channels—not through the contact information in the email. Additionally, report phishing emails to your email provider or cybersecurity agencies to help others stay safe.

Fraudulent Websites
Fraudulent websites are fake or deceptive sites created to trick users into sharing sensitive information, making purchases, or installing malware. These sites are often designed to look like legitimate business or government websites, mimicking branding, logos, and even web layouts to seem trustworthy.

Here are ways to spot fraudulent websites and protect yourself online:

1. Check the URL Carefully:

  •  Fraudulent websites often have slightly altered URLs that look similar to legitimate ones but may include extra letters, numbers, or unusual domain endings (like .biz or .info instead of .com or .ca). Always verify the URL and be cautious of misspellings or hyphens.

2. Look for HTTPS and a Secure Lock Icon: 

  • Legitimate websites that handle sensitive information should use HTTPS, indicated by a padlock icon in the address bar. However, while HTTPS is important for security, some fake sites also use it, so it’s not a foolproof sign.

3. Beware of “Too Good to Be True” Offers: 

  • Fake sites frequently advertise steep discounts, giveaways, or deals that seem too good to pass up. These offers are often used to lure users into entering credit card details or making purchases that won’t be fulfilled.

4. Check for Quality and Professionalism: 

  • Fraudulent websites often contain poor grammar, low-quality images, or poorly designed layouts. Legitimate companies invest in polished, well-written websites. Excessive pop-up ads or invasive banners are also red flags.

5. Look for Missing Contact Information: 

  • Legitimate businesses typically list physical addresses, phone numbers, and customer service information. Fake websites often lack detailed contact information or provide only a generic form.

6. Research the Website and Company:

  • If you’re suspicious, search for reviews of the website or the business. Websites like Trustpilot or the Better Business Bureau often have information on known scam sites. A quick search may reveal if others have reported the site as fraudulent.

7. Be Cautious with Payment Information: 

  • Avoid entering payment information unless you’re certain of the website’s legitimacy. Fraudulent sites may capture your financial details for unauthorized use. Use secure payment methods, such as credit cards or third-party processors, rather than debit cards, which offer less protection.
By being vigilant and cautious, you can reduce your risk of falling victim to fraudulent websites. If you encounter one, report it to your browser provider or cybersecurity agencies to help protect others from potential scams.
Fake Social Profiles

Fake social media profiles are accounts created with false or misleading information to deceive users. These profiles are often used by scammers, bots, or fraudsters for purposes like impersonation, spreading misinformation, phishing, or tricking people into sending money or personal information.

Here’s how to recognize fake social profiles and avoid falling victim:

1. Suspicious Profile Information: 

  • Fake accounts often have limited or generic profile information, including fake or stock photos, vague bios, or a recent account creation date. The account may lack real personal details, making it harder to verify.

2. Few or Low-Quality Posts: 

  • Fake profiles typically have few posts, often reposting generic content or inspirational quotes without any personal photos or specific life details. The content may also seem inconsistent or unrelated, as if it’s trying to appeal to a broad audience.

3. Minimal or Suspicious Connections: 

  • Fake profiles usually have a low number of friends or followers, often from unrelated locations or random demographics. Some may have an unusually high number of connections for a new or inactive account. Beware of requests from people you don’t know, especially if they have no shared connections.

4. Immediate Requests for Money or Personal Information: 

  • One of the clearest signs of a fake profile is if the person quickly brings up financial troubles, requests money, or asks for personal information like your phone number or address. This is especially common in romance and “friendship” scams.

5. Poor Language and Grammar: 

  • Many fake profiles have messages with poor grammar, odd phrasing, or formal language that seems out of place, as they are often created by scammers from different regions or automated bots.

6. Inconsistent Details: 

  • Look out for discrepancies in what the profile says and what it shows. For example, someone claiming to be from a specific place may have connections or posts that don’t align. Fake profiles often slip up on small details, making the inconsistencies noticeable if you look closely.

7. Reverse Image Search: 

  • If you’re suspicious of someone’s profile picture, try doing a reverse image search. This can reveal if the photo is a stock image or has been used in multiple fake profiles, indicating that the account is not genuine.

To protect yourself, only accept friend requests from people you know, and be cautious of messages from new or unknown profiles. Avoid sharing personal information online, and report suspicious profiles to the platform’s support team. By staying vigilant, you can reduce the risk of interactions with fake profiles and protect your personal information.

SMS Messaging
Scam SMS messages, also known as "smishing," are fraudulent texts designed to trick recipients into providing personal information, clicking on malicious links, or downloading harmful attachments. These messages often appear urgent or alarming, aiming to provoke a quick reaction.

Here are key signs of scam SMS messages and tips for staying safe:

1. Unexpected Links and Requests:

  • Smishing messages commonly contain links that lead to fake websites designed to capture personal information. These links may appear shortened or disguised, so always be cautious of unexpected URLs in texts, especially if they prompt you to log in or provide sensitive information.

2. Urgent or Threatening Language: 

  • Many scam texts use scare tactics to create a sense of urgency, like “Your account will be suspended” or “There’s an issue with your delivery.” This pressure tactic is intended to make you respond quickly without evaluating the message’s legitimacy.

3. Too-Good-To-Be-True Offers: 

  • Some smishing attempts offer prizes, discounts, or lottery winnings. Messages like “You’ve won a prize! Click here to claim” are red flags. Legitimate companies do not notify winners through unsolicited texts.

4. Unfamiliar Senders or Generic Numbers: 

  • Scam SMS messages often come from random or unidentifiable numbers instead of legitimate phone numbers associated with banks or companies. Be wary of texts from unfamiliar numbers, especially if they claim to be from institutions you don’t use.

5. Requests for Personal or Financial Information: 

  • Trusted organizations will never ask for sensitive information like passwords, Social Security numbers, or PINs via text. If a text requests this information, it’s likely a scam.

6. Spelling and Grammar Mistakes:

  • Many scam messages contain poor grammar, spelling errors, or awkward phrasing. This is often a sign of low-quality scam attempts and should be a clear red flag.

7. Check with the Source: 

  • If you receive a suspicious message claiming to be from a known entity (like a bank or delivery service), contact them directly using official channels rather than responding to the text. This helps confirm if the message is legitimate.

To protect yourself, never click on links or provide information in response to unsolicited messages. Consider blocking unknown or spam numbers, and use built-in spam filters offered by many mobile carriers and messaging apps. Reporting suspicious texts to your carrier or cybersecurity agencies can also help prevent smishing attempts from spreading.

Using these things to trick people into sharing sensitive information or sending money. Always verify the legitimacy of websites, companies, and individuals before engaging.

Use strong, unique passwords and enable two-factor authentication to add an extra layer of security. Avoid clicking on unsolicited links or downloading unexpected attachments, even if they appear to come from familiar sources.

It's also important to stay updated on current scam tactics, as fraudsters are continuously evolving their methods. Finally, report any suspicious encounters to relevant authorities, like the Canadian Anti-Fraud Centre, to help raise awareness and prevent others from becoming victims.

Cyber Security for Businesses

These are all things to watch out for as a business as well. Vulnerabilities can lie within your company without you even knowing. It's best to always consult with your IT team and test for these vulnerabilities within the business. Even being proactive by having a Business level cyber security service in place like Trend Micro and other companies. If you need to consult with an IT team to figure out what is best for your company click the button below.

Technical Solutions

Kyle

Categories -
News
Share -
Tags -