エピソード

  • Beware the Cybercrime Underworld: Scotty's Scam Watchdog Report

    Beware the Cybercrime Underworld: Scotty's Scam Watchdog Report
    2025/06/06
    Hey there, I’m Scotty — your go-to guy for scams, hacks, and digital sneakery. If it involves a shady text, a phishing link, or some guy in his mom’s basement pretending to be your bank, I’ve probably dissected it. Now, let's dive straight into the digital underbelly, because the scam artists have been busy this week — and not in the good way.

    Top billing on the scam front? That would be the arrest of Luka Vasković, the 28-year-old Serbian behind a sprawling ransomware-as-a-service operation, taken down just three days ago in a coordinated Europol raid in Belgrade. This guy ran a service called "ScoundrelWare" — I mean, it's not like he had a branding team, but still — which let low-level cybercriminals rent pre-built ransomware kits. Authorities say ScoundrelWare was used in over 100 attacks across Europe and the US, targeting hospitals and schools. Yeah, real charming. If the FBI’s indictments stick (and wow, it looks like they will), Luka’s going to be sipping cold coffee in a very different type of basement for a long time.

    Meanwhile, over in the good ol' US of A, an A-list celebrity voice clone scam just surfaced — and it’s equal parts wild and horrifying. Scammers used AI voice cloning to impersonate Matthew McConaughey in robocalls, claiming to support a fake charity connected to Texas wildfire relief. No, alright alright alright was said, but the voices were convincingly close. The FTC launched an investigation this week and is warning everyone: verify calls the old-school way — call the organization directly. If someone’s asking for crypto donations over the phone, back away like it's a tarantula carrying a USB port.

    And listen — don’t drop your guard on job scams. LinkedIn has been dealing with a fresh plague of fake recruiters. One recent scheme involves a fake Google recruiter promising remote engineering roles — all you have to do is buy a company laptop upfront. Right. If a job asks you to “order equipment first,” it’s not onboarding, it’s offloading your cash.

    Want to avoid these scams? Rule one: If it’s urgent, emotional, or too awesome to be real — it’s probably not real. Rule two: Google is your friend. Look up names, email addresses, reverse search those profile pics. Rule three: Turn on two-factor authentication and use a passphrase, not your cat’s name plus the year you graduated.

    Alright, digital denizens, that’s your scam report from yours truly. Stay sharp, surf safe, and never trust a pop-up that says you’ve won an iPhone. Scotty out.
    続きを読む 一部表示
    3 分
  • Beware the Evolving Scam Tactics: Scotty's Cybersecurity Insights

    Beware the Evolving Scam Tactics: Scotty's Cybersecurity Insights
    2025/06/04
    All right, listen up—Scotty here. I know scams like I know my router password, and that baby’s 28 characters long with special symbols. Now, let’s plug into what’s been happening in Scam Land over the past few days. Spoiler alert: it’s been wild.

    Just yesterday, June 3rd, the Department of Justice announced the arrest of 32-year-old Dmitri Reznikov, a name you’ll want to remember if you ever ran into fake crypto wallets on Telegram or Discord. This guy ran a whole operation out of Eastern Europe, pushing fake investment platforms that promised NFTs that “absolutely would skyrocket overnight.” Instead, investors got zip. Oh—and he was also behind a phishing ring targeting Coinbase users with login prompts that looked painfully legit. If you clicked, he had you. Always check the URL, folks. If it ain't coinbase dot com, it ain’t your friend.

    Meanwhile, over in Los Angeles, a group pretending to be from the IRS—classic move—were busted just last Friday. They’d spoof caller IDs and even had AI voices replicating official IRS agents. Deepfake voices now? We’re there. It’s 2025, and anyone can be anyone… for the price of a decent voice model. Some victims were told they owed taxes from 2020 pandemic relief funds, and if they didn't pay immediately via Apple gift cards—yeah, still happening—they’d be arrested. Rule one: No government is getting you to Venmo them your freedom.

    Now let’s talk fake job offers. This one stings, people. Scammers recently started using LinkedIn—yes, your precious network—to offer roles at major names like SpaceX and Tencent. One guy, Marcus Liu—recent grad from Chicago—got offered a “remote developer role” at what he thought was Amazon Web Services. They sent him onboarding docs, even ran a fake orientation. You know when they finally asked for sensitive info to “set up payroll”? He was toast. Always verify the company domain before signing anything. No “hr-aws-careerjobs dot net” is offering you six figures.

    And let me hit you with one more, because it’s spicy. There’s a partnership scam going around where social media influencers are getting emails about “collaboration deals” with brands like Rolex and Louis Vuitton. Email looks slick, attachment has the brief, you open it—and boom: info stealer malware scripts inject into your system. If it’s a gig too good to be true and they want you to download a ZIP file, close that tab like it's your ex texting you “sup?”.

    Bottom line? Scammers are evolving. They’ve got AI, deepfakes, Web3 lingo, and they’re lurking in your inbox right now. Keep software updated, use two-factor authentication that isn't SMS, and question everything with a digital sniff test. If your gut says “this is sketch”—trust it.

    That's your quick and dirty download from Scam HQ today. I’m Scotty, reminding you: in cyberspace, trust should be earned—never downloaded. Stay safe, stay smart, and don’t get got.
    続きを読む 一部表示
    3 分
  • Scam-Fighting Cyber Sleuth Reveals Latest Tricks: Phishing, Crypto Laundering, and AI-Powered Voice Scams

    Scam-Fighting Cyber Sleuth Reveals Latest Tricks: Phishing, Crypto Laundering, and AI-Powered Voice Scams
    2025/06/02
    Hey, Scotty here — your friendly neighborhood scam-spotter, cyber sleuth, and part-time digital watchdog. Let’s skip the fluff. It’s June 2nd, 2025, and here's your up-to-the-minute download on the latest and wildest in scamland. Buckle up, because the fraudsters have been busy.

    So this past week, the big name lighting up the cybersecurity world isn't a tech giant—it's a scammer. Meet Santiago Luna, a 34-year-old from Miami who was arrested on Thursday for running a massive phishing-as-a-service platform. Yeah, you heard right—they’ve Uber-ized phishing. Santiago’s service, dubbed "Hookline," sold tailor-made fake login pages of everything from Netflix to Microsoft 365. Users signed up to deploy these sites and collect credentials. Authorities say he had over 10,000 active clients. Charming.

    Meanwhile, British authorities just extradited Naila Ferguson, the so-called “Crypto Duchess,” for laundering nearly $90 million through fake Bitcoin investment platforms. Her scam literally tricked people into thinking they were investing in an AI-run trading bot that “never lost a trade.” Spoiler: it lost everything—mostly other people’s money. The kicker? Her YouTube videos featured rented Lamborghinis and green screen penthouses.

    Now let’s talk trending scam tactic: QR codes. Specifically, “quishing”—QR phishing. A couple in Phoenix lost their savings last week by scanning a slick-looking QR code on a parking meter which redirected them to a fake city payment portal. They punched in their card info, and within five minutes had three cash transfers hit their account bound for—you guessed it—Hong Kong. Pro move here: only scan QR codes you completely trust. And no, a sticker slapped on a meter doesn’t count.

    Also, be alert for those fake voice scams powered by AI. A woman in Vancouver reported getting a frantic call from what sounded exactly like her sister, begging for bail money. It was a deepfake. The AI cloned her sister’s voice from old social media videos and used it to pull a digital kidnapping hoax. We're entering the age of synthetic scams, folks. Your ears can lie to you now.

    So, in short: Never trust links in unsolicited texts. If an investment sounds like it prints money—it prints heartache. Keep multi-factor authentication on everything—including your toaster if possible. Keep your software updated, and for the love of keyboards, don't reuse passwords.

    I’m Scotty. Stay sharp, stay skeptical, and if it smells fishy, it’s probably a phishing kit sold on Telegram. Catch you next breach.
    続きを読む 一部表示
    3 分
  • Navigating the Evolving Landscape of Cyber Scams: A Comprehensive Guide to Staying Safe

    Navigating the Evolving Landscape of Cyber Scams: A Comprehensive Guide to Staying Safe
    2025/06/01
    Alright, let’s cut to the cheese—I mean chase. It’s June 1st, 2025, and I’m Scotty, your friendly neighborhood scam-buster, tapped straight into the cyber grapevine. If you’ve got Wi-Fi and a pulse, chances are someone has tried to scam you lately. So yeah, it's not just your aunt getting catfished by "Army General Steve" who oddly needs Apple gift cards, it's happening to everyone. And this past week? Oh, it’s been a buffet of grifts and busts that’ll make your head spin.

    Let’s start with Tuesday, in New Delhi. Indian authorities finally arrested the ringleader of one of the largest scam call centers still operating post-COVID. Karan Preet Kapoor—yeah, let’s name and shame—was linked to a network responsible for impersonating Microsoft support agents. His crew called users, claimed their PCs were infected, then charged them fees for imaginary threats. Wild part? They found scripts downloaded straight from YouTube “how to tech scam” tutorials. DIY criminals, right?

    Speaking of scripts, the Singapore police just broke up a local phishing syndicate that had been spoofing the Ministry of Health. Yeah, because nothing says “official” like a typo-filled link that redirects to 'min1stryhealth-secure.com'. Over 400 people had handed over their SingPass logins before authorities spotted the fraud.

    Now let’s zoom over to good ol’ America, where things have been equally spicy. This week, the FBI nabbed a Florida man, Daryl Benson, for running a fake crypto investment platform called “BitBloom.” Sounds like a boutique for digital daisies, right? Except he scammed retirees out of $12 million. The “platform” was just a Squarespace site with fake dashboards and price tickers scraping CoinDesk. Daryl used the funds to buy—wait for it—three boats and a rare Pikachu Illustrator Pokémon card. Because obviously.

    But hands down, the most widespread threat right now is AI-powered voice scams. Deepfakes have officially leveled up. Just this Thursday, a tech employee in Berlin transferred €240,000 after receiving a call that sounded exactly like his finance director. Voice cloned. Perfect accent. Panic-worthy tone. Full-on Mission Imposs-AI-ble.

    So what do we do, folks?

    Rule one: If someone calls you claiming to be from the government, Apple, or your own boss—call them back. Using a verified number. Don't trust inbound.

    Rule two: Don’t click links that are “almost” right. Hover first. Check the URL. Double check it.

    Rule three: Be skeptical of urgency. Scammers love phrases like “your account is compromised” or “you must act now.” Real institutions don’t operate like they’re running from a burning building.

    And for the love of cybersecurity—don’t give out one-time passcodes. Ever.

    Alright, that’s your scam sitrep for the week. I’m Scotty, signing off, but remember: in a world where your grandma can be tricked by a talking fridge, stay smart, stay suspicious, and maybe—just maybe—be a little paranoid. It's healthy.
    続きを読む 一部表示
    3 分
  • Avoid Becoming a Cyber Victim: Scotty's Latest Internet Scam Insights

    Avoid Becoming a Cyber Victim: Scotty's Latest Internet Scam Insights
    2025/05/30
    Alright, listen up—it’s Scotty here, your favorite caffeine-fueled cyber-sleuth with your latest download on internet scams. Think of me as your firewall with a face. And folks, the grift game has been busy this week.

    Let’s kick it off with the juicy headline out of Florida. Just this Tuesday, the FBI announced the arrest of a 31-year-old Miami man, Luis Ramon Delgado, accused of running a luxury Airbnb refund scam that raked in over $8 million. Yeah—eight million. The guy and his crew used fake identities, hacked accounts, and social engineering to trick Airbnb into issuing refunds for fake complaints. Meanwhile, they were partying in the high-end rentals they "disliked." If that’s not cyber-nerd villainy, I don’t know what is.

    On the international front, Indian authorities just wrapped up what they’re calling the biggest call center scam takedown of the year. Over 400 people were arrested in Gurgaon for running a fake tech support ring impersonating Microsoft, Apple, even Dell. Their target? Elderly victims in the U.S. and U.K. These scammers would cold call claiming your computer had a virus, then charge bogus “repair” fees while installing spyware. Rule of thumb? Microsoft doesn’t know who you are, and they definitely aren’t cold calling you.

    And just when you thought AI was our buddy, buckle up—scammers are using deepfake tech to pull off CEO voice cloning scams. One recent case in Hong Kong cost a finance manager nearly $25 million after he was tricked by a voice AI clone of his company's CEO. Real money. Real bank transfer. Real scam. My advice? Before wiring a life-altering amount of money because "your boss" asks via voice call or email—verify it twice, preferably with a personal call or video chat.

    Now trending hard this week: the phishing wave hitting Gmail users with fake "Account Suspension" alerts. They look legit, complete with Google logos and urgent red banners. But that "verify your info" link? It drops you into a site really designed to steal your login credentials. Always, always check the sender address, and when in doubt type the address into your browser manually—don’t trust email links like it's 1999.

    Want to avoid becoming the next sad story on Reddit’s r/scams? Turn on two-factor authentication like everywhere. Be suspicious of urgency. And if someone says “we’re from the government and you owe us gift cards,” just exit the call and go hug a real human.

    Alright cyber-warriors, that’s your scam brief from the desk of Scotty. Stay sharp. Stay skeptical. And remember—if it smells phishy, it probably is.
    続きを読む 一部表示
    3 分
  • 5 Scams Targeting Techies and Grandmas You Need to Watch Out For

    5 Scams Targeting Techies and Grandmas You Need to Watch Out For
    2025/05/28
    Hey, it’s Scotty here — your cyber-savvy sidekick and scam-busting nerd, reporting from the digital frontlines. So, what’s the big scam storm swirling around the nets this week? Oh boy, buckle up.

    First off, big news out of Los Angeles — remember that sham “tech entrepreneur” who claimed to be launching Africa’s next unicorn? Yeah, meet Kofi Darnell Adu-Boahene. He was arrested just three days ago for orchestrating a ridiculously flashy investment scam, allegedly siphoning over $4.8 million from investors by faking contracts with large African infrastructure firms. He even duped a few angel investors with doctored pitch decks, fake wire confirmations, and screenshots of non-existent bank accounts. It was Silicon Valley meets Craigslist scammer. Yikes.

    Meanwhile, over on the East Coast, an ATM skimming ring got busted in New Jersey. This wasn’t your run-of-the-mill card cloning operation — they were using AI-enhanced card skimmers that adapt based on the ATM model. Wrap your head around that! These devices weren’t just grabbing your card number. They were smart, syncing real-time with stolen PINs and ready to deploy the second your paycheck hit. The mastermind, 29-year-old Arman Petrović, was picked up in Newark while trying to install a skimmer at a gas station kiosk. Dude had a whole suitcase of high-tech gear. I mean, at least try to not look like a Bond villain?

    Now let’s talk about something more personal — those fake USPS delivery texts that literally everyone’s grandma forwarded last night. If you got one that says “Your package couldn’t be delivered. Please schedule pickup here”—delete it. Fast. The link leads to a phishy site that steals your name, address, and credit card number. These scams are being traced back to call centers in Manila and have been spiking this past week with memorial weekend rush. It’s like phishing, but with express shipping.

    And one more — the “AI Job Offer” scam is back, uglier than ever. People are getting emails from what looks like Upwork or Freelancer saying they've been preselected for a project, complete with a fake Zoom invite. Once you're in the call, they ask you to verify your identity with photos of your ID and... wait for it... facial recordings. You know — the stuff that fits real nice into deepfake scams. It’s spreading like wildfire in tech forums, particularly targeting junior devs eager for work.

    So what do you need to know to stay clear? Easy: Always verify. Triple-check URLs, don’t trust unsolicited texts, and remember — if a web form is asking for your SSN, driver's license, selfie, and gym locker combo… it’s probably not legit. And yes, USPS does not text you about packages at 2am.

    Alright, that’s the scam scoop for May 28, 2025. Stay sharp, stay skeptical, and never give away your data to anyone just because their domain name almost looks legit. Scotty out.
    続きを読む 一部表示
    3 分
  • Unmasking Cyber Scams: Your Neighborhood Cyber Sleuth Exposes the Latest Tactics

    Unmasking Cyber Scams: Your Neighborhood Cyber Sleuth Exposes the Latest Tactics
    2025/05/25
    Name’s Scotty—your friendly neighborhood cyber sleuth, decoding scams so you don’t get played. Let’s dive in, cause this past week’s scam stories have been hotter than a GPU under full load.

    First up—the big news out of the UK. Thomas Wainwright, a 34-year-old cyber-criminal from Manchester, was arrested after orchestrating a sophisticated phishing campaign that targeted over 10,000 people using fake HMRC tax refund emails. He lured them into entering personal info on cloned government websites—then siphoned off identities like a Silicon Valley villain. The kicker? He used AI to personalize emails based on LinkedIn profiles. Yeah, he wasn’t just phishing—he was spearfishing with a laser-sighted harpoon.

    Across the pond, the FBI just busted an entire call center gang in New Jersey posing as Amazon fraud investigators. They’d tell victims there were suspicious charges on their accounts, then walk them through a fake “investigation,” which somehow required remote access to their phones and laptops. And boom—bank drained faster than you can say, “Alexa, call my real bank.”

    Now, let’s talk pig butchering. Not the farm kind—the cryptocurrency scam kind. The FBI released a public warning just days ago: scammers are building fake romantic relationships to get people to invest in bogus crypto platforms. One victim in Seattle lost over $400,000. The sites look real, show fake earnings, let you withdraw small amounts—but the moment you go big? They vanish, you’re blocked, and no, your “crypto coach” named Emily from Telegram was never real.

    Speaking of platforms, if you’ve been using Airbnb or Facebook Marketplace, double-check those accounts. A recent scam trend involves attackers creating fake login screens that pop up when you're redirected from a shared link. You type in your info? They snag it in real-time using a method called Real-Time Phishing Proxy. This isn’t theoretical—it’s happening now, and they’re using tools like EvilProxy to do it.

    So what can you do? First—never trust links sent over text or email, especially those involving money, even from known contacts. If it feels urgent or emotional—it’s probably engineered that way. Use multi-factor authentication wherever possible, avoid giving remote access under pressure, and always verify app requests manually.

    One more kicker before I go—popular AI chatbot tools are now being misused to draft scam emails that are mistake-free and eerily convincing. Grammarly might’ve just gotten replaced by ScamBot 9000. So stay sharp—if it sounds too polished and it’s asking for money, slow down and sleuth it out.

    Till next time, stay one firewall ahead—Scotty out.
    続きを読む 一部表示
    3 分
  • 7 Shocking Scams Sweeping the Internet in 2025: How to Protect Yourself

    7 Shocking Scams Sweeping the Internet in 2025: How to Protect Yourself
    2025/05/23
    Hey there, folks—Scotty here, your friendly internet sleuth and part-time digital bodyguard, coming at you live from the intersection of “Did they seriously fall for that?” and “Please don’t be next.” It’s May 23rd, 2025, and wow, the scam universe has really been popping off this past week. So buckle up—it's time to cruise through the good, the bad, and the criminally clever.

    Let’s start with the headliner—Eduardo Mendez, recently nabbed by U.S. authorities in connection with a multimillion-dollar phishing ring that duped over fifty companies across North America. Eduardo was posing as everything from a job recruiter to a fake CFO—sending hyper-convincing emails layered with real-sounding links pulling data straight from unsuspecting employees. The twist? He was using AI-generated voices to spoof actual corporate execs during phone follow-ups. Yes, AI. This scam took “Hi, it’s your boss, wire that money!” to disturbingly convincing levels.

    If your company is still relying on old-school verification methods—like assuming someone’s voice is really them—2025 is here to remind you: deepfakes aren’t just for movie villains anymore. Set up two-factor verifications, only wire money after multiple checks, and please—talk to your finance team like they’re not just sitting quietly under fluorescent lights.

    Meanwhile, across the Atlantic, there’s the U.K. gang busted this week for running one of the biggest SMS phishing—or "smishing"—campaigns we’ve seen yet. Authorities seized dozens of devices configured to send out hundreds of thousands of fake text messages per day, claiming everything from missed delivery notices to “unauthorized login” alerts. One of the suspects, Craig Thomlinson—who ironically had a TikTok channel about cyber hygiene—was caught when he responded to an actual phishing bait link set up by investigators. That’s karma clicked.

    And if you’re thinking, “Well, I don’t click those,” congrats! But now the game has shifted to browser push-notification scams. Reports just surged this week about fake antivirus pop-ups telling users they'd been infected, urging them to “scan immediately.” Click that, and they’ve got you—installing remote access Trojans like it's 2011 all over again. This one’s been hitting Chrome, Firefox, even mobile Safari. Rule of thumb? If your browser tells you your phone has 12 viruses, it’s lying.

    Public service moment: scammers are LOVING WhatsApp and Telegram right now. There’s a scam boiling up where fake investment groups form overnight, full of bot-driven conversation to look legit. You join, you trust, they lure you into dropping crypto “just to get started.” Boom—wallet emptied. This has been red-hot in Malaysia, and now it’s spreading to the U.S. and Germany.

    The big takeaway this week? Scammers are no longer hiding in dark alleys—they’re in your inbox, in your group chats, even impersonating your boss with AI voice clones. Stay skeptical, verify everything, and for the love of passwords—stop reusing your dog's birthday.

    That’s the scamscape as of today. I’m Scotty, reminding you: it’s not paranoia if they’re actually out there trying to steal your pizza money. Stay alert, stay patched, and I’ll catch you next breach.
    続きを読む 一部表示
    3 分