What are Phishing Scams?

What Is a Phishing Scam?

Phishing scams are when someone pretends to be a trusted company or organization — like your bank, Amazon, or a social media platform — to trick you into sharing personal information. These scammers usually reach out through emails, texts, or calls and try to get you to click a link or provide sensitive details.

The goal is to steal your login credentials, financial information, or even access to your online accounts.

How These Scams Work

Phishing scams often start with a message claiming something urgent — like suspicious activity, a missed payment, or a problem with your account. The message usually includes a link that looks official but actually leads to a fake website designed to steal your info.

Some scammers will even call you pretending to be customer support. They may ask you to verify your identity by giving them security codes, passwords, or payment details.

Who They Pretend to Be

Phishing scammers usually impersonate well-known and trusted names to increase their chances of success. Common examples include:

• Amazon

• Facebook or Instagram

• PayPal or your bank

• Apple or Google

• Microsoft or Netflix

If it’s a major brand, scammers are likely using it to trick people.

What the Numbers Say

Phishing continues to be one of the most common and damaging types of scams. In 2024 alone, phishing-related fraud accounted for a large portion of online scam reports, with over $1 billion in reported losses globally.

Most phishing scams start with:

• Emails or texts pretending to be account alerts

• Fake login pages that steal your credentials

• Phone calls requesting verification details

• Scare tactics designed to make you act quickly

(Source: FTC 2024 Consumer Protection Report)

Real-World Examples

Fake Bank Call: “Hi, this is Chase Fraud Protection. We’ve detected suspicious activity on your account. Please confirm your card number and PIN so we can secure your account.”

(The scammer uses this info to steal your money.)

Instagram Support Impersonation Call: “This is Instagram Security. We noticed a login attempt from a different country. Can you give us your username and the code we just texted you?”

(That code gives them full access to your account.)

Fake Amazon Robocall: “This is Amazon. We’ve noticed an unauthorized charge of $799. Press 1 to cancel or verify your account details.”

(Once you “verify,” they steal your login or credit card info.)

How to Protect Yourself

• Don’t share login information. Real companies will never ask for your full password, PIN, or security codes through text, email, or unsolicited phone calls.

• Avoid clicking suspicious links. Always go directly to the official website or app to check account activity.

• Be cautious with urgent warnings. Scammers use fear to get you to act fast without thinking.

• Use two-factor authentication (2FA). This adds an extra layer of security to your accounts.

• Report phishing attempts. You can report scams directly to the FTC at reportfraud.ftc.gov and to the company being impersonated.

Phishing scams are everywhere — but by staying alert and verifying before you click or share anything, you can protect yourself and help others do the same. Share this post to spread awareness.