FDIC-Insured - Backed by the full faith and credit of the U.S. GovernmentAsked to enter your email address and password to open a party invite? That’s a scam!
It’s party season! “You’re invited” texts and emails are going around that are actually phishing scams. You may be asked for your email login credentials or a special pass code to open these fake invitations. Don’t fall for these phishing scams. Don’t enter your credentials or special pass code. Learn how these scams work and how to protect yourself if you receive one of these phishing attempts.
Scammers will send unexpected messages that look like they’re from a well-known invitation platform like Evite or Paperless Post. These messages may list someone you know as the host and make you enter email username and password to see event details. Some messages may require you to enter a phone number and share a special code to RSVP. Real invitations do not work this way. This is just a scammer trying to steal (or reset) your account information. If the scammer can get in, they might take over your email account and send the same scam to your contacts.
To help protect yourself from phishing texts and emails:
- Slow down. Remember if you receive unexpected emails or texts, resist the urge to click, resist entering credentials, and resist handing out information/codes. Instead, slow down and check with the host from a known method to make sure the email or text is real (do not use the number that might be instructed within the email or text you are questioning).
- Keep security software updated. Set your computer software to update automatically so it will deal with any new security threats. Update your phone’s software regularly, too.
- Use two-factor authentication. Taking extra steps to verify who you are makes it harder for scammers to log into your accounts if they get your username and password.
- Act quickly. If you think a scammer has your email account information, change your password to create a new, strong passphrase right away. Then, go to IdentityTheft.gov for specific steps to take based on other information you may have lost.
Forward phishing emails to the Anti-Phishing Working Group at reportphishing@apwg.org and texts to SPAM (7726). Then, report the phishing attempt to the FTC at ReportFraud.ftc.gov
Source: Federal Trade Commission