Scam Warning Involving Your Phone

  • Thread starter Drakkith
  • Start date
In summary, beware all. I almost fell for a scam today. Well, to be fair, I fell for it but quickly realized what happened and managed to fix it before anything bad happened.
  • #1
Drakkith
Mentor
23,081
7,475
Beware, all. I almost fell for a scam today. Well, to be fair, I fell for it but quickly realized what happened and managed to fix it before anything bad happened.

I posted a Craigslist ad for some random odds and ends that I was giving away, with my phone number for the contact info. A few hours later I received a text message from someone saying they were interested in my ad. They said that they wanted to make sure the ad was real and not fake, so they were sending me a 'verification code'. This should have been a red flag already, but I was in the midst of something so I just gave them the code (received in a separate text).

Then they asked for another code, which I gave again. After the 2nd code something clicked and I said to myself, "Hmm... wait a second...".
After actually reading the text messages with the codes, I realized that the messages were from Google Voice. That's when I stopped what I was doing and started doing some research on this. I quickly came across this kind of scam, where someone will send you a verification code to 'verify your ad is real' and then use that code to make a google voice account with your phone number (presumably for nefarious purposes).

Soon after I started researching this, I also received a message from Verizon (my carrier) with a verification code. I shudder to think what they could have done if they had gotten access to my Verizon account.

Luckily all I had to do at this point was to create my own Google Voice account and connect my phone number to it, since connecting your number automatically removes it from any other account it was linked to (like the scam account).

Long story short, I managed to catch this scam before it did any real harm to me. I'm not sure what kind of damage could have been done had I not quickly caught on to the scam, but I suspect it wouldn't have been fun to fix. Or cheap.

Be safe out there folks!
 
  • Like
Likes davenn, DennisN, nuuskur and 4 others
Computer science news on Phys.org
  • #3
Update: A friend of mine told me that the verification code was for a Google account, not just a Google Voice account, and that through there they might have access to financial information. He recommended I change my password to that as well.

I'm pretty sure I don't have any financial information attached to my Google account, but I've changed my password to both Google and Verizon just in case.
 
  • #4
Never hurts to change all your passwords as you never know what they may find and how they will come at you again.

Years ago at GE, a corporate auditor who had worked at our computer center as a production operator (ie setup and submitted scheduled jobs for clients) used his knowledge of accounts and passwords to access our customer service user acct. On it, was a file of all passwords used on the site. It was a reference for when a GE customer would call and say they forgot their password. This was circa 1976 before the idea of never showing passwords but instead, select a new one that was subsequently hashed and stored.

The auditor found this unprotected file, reported it and got a lot of kudos from the audit team for finding a security breach and our customer service folks who worked hard got egg on their faces. All because at that time we didn't have or follow any recommended security practices as things were just too new. To be fair the auditor used insider knowledge to break in but that's now a thing to watch.

GE auditors would usually go on to become corporate-level managers of whole GE divisions after having traveled around to many GE sites doing their audit work. Basically, they gave up their life for a few years to reap the benefits of becoming a corporate manager in high esteem.
 
  • Like
Likes Drakkith
  • #5
As a rule of thumb, never share any such verification code with someone whom you do not know personally.
 
  • Like
Likes Drakkith
  • #6
Wrichik Basu said:
As a rule of thumb, never share any such verification code with someone whom you do not know personally.

Or anyone really. Unless there's a very, very good reason they need it.
 
  • Like
Likes Wrichik Basu
  • #7
That verification jazz is suspicious from the get go. I'd be like how does one verify whether my ad is real or not based on some code. If they're interested in the merchandise, no code will verify whether I actually have the goods.

Good job catching on to that. Haven't run into that kind of scam, but I've been offered "once in a lifetime" investment opportunities at least twice a month.
 
  • Like
Likes Drakkith

FAQ: Scam Warning Involving Your Phone

1. What is a phone scam?

A phone scam is a fraudulent activity where scammers use phone calls or text messages to trick people into giving them money or personal information.

2. How do scammers use my phone to scam me?

Scammers can use various tactics such as impersonating a legitimate organization, posing as a government official, or offering fake prizes, to convince you to share sensitive information or make a payment through your phone.

3. How can I identify a phone scam?

There are some common signs of a phone scam, such as receiving unexpected or unsolicited calls or messages, being pressured to act quickly, or being asked to provide personal information or make a payment.

4. What should I do if I think I am being scammed through my phone?

If you suspect a phone scam, hang up immediately and do not provide any personal information or make any payments. You can also report the scam to your phone carrier and the Federal Trade Commission.

5. How can I protect myself from phone scams?

To protect yourself from phone scams, never give out personal information over the phone, do not trust unknown or suspicious callers, and consider registering your phone number on the National Do Not Call Registry to reduce the number of unsolicited calls you receive.

Back
Top