
NOTE: must write it AFTER PenTest

NOTE: link to AL People or GIS?

In a hostile, depersonalized net environment, identity is one's
liability. What were the kids' weapons against me? My name, my address,
my home. What does putting a picture of someone's house online really
imply, after all? We know where you live. We can get you, the real
you-while you have no idea who we are.

the anonymous status of people in an online group engenders crowd
behavior. They have nothing to fear as individuals, and get used to
taking actions from a distance and from secrecy. As a result, they
exacerbate digital technology's most dehumanizing tendencies, and end up
behaving angrily, destructively, and automatically. They go from being
people to being a mob.

The way to dampen the effects of this problem is not to retreat into
anonymity ourselves, but to make being real and identifiable the norm.
As in the real world, the fewer people who know each other, the more
dangerous the neighborhood.

The real way to "go social," if they wanted to, would not be to
accumulate more page friends or message followers, but rather to get
their friends and followers to befriend and follow one another. That's
how to create a culture in a peer-to-peer, networked medium.
ally advice

[Someone is pretending to be me | Hacker News](https://news.ycombinator.com/item?id=32996953)
[Someone is pretending to be me.](https://connortumbleson.com/2022/09/19/someone-is-pretending-to-be-me/)

[Google Ad Disguising Itself as www.gimp.org | Hacker News](https://news.ycombinator.com/item?id=33384236)
[Dangerous Google Ad Disguising Itself as www.gimp.org : GIMP](https://old.reddit.com/r/GIMP/comments/ygbr4o/dangerous_google_ad_disguising_itself_as/)

[DarkPID - Private Social Engineering Forum](https://darkpid.com/)

[Kevin Mitnick has died | Hacker News](https://news.ycombinator.com/item?id=36795173)
[Kevin David Mitnick Obituary - Las Vegas, NV](https://www.dignitymemorial.com/obituaries/las-vegas-nv/kevin-mitnick-11371668)

[Philadelphia Phreakers installing free payphone | Hacker News](https://news.ycombinator.com/item?id=34081858)
[PhilTel Brings Back Pay Phones Without Change in Philly - NBC10 Philadelphia](https://www.nbcphiladelphia.com/news/tech/pay-phone-philadelphia/3452775/)

[Understanding Social Engineering & Tips for Prevention | Ally](https://www.ally.com/stories/security/dont-be-fooled-by-social-engineering/)

[GitHub - giuliacassara/awesome-social-engineering: A curated list of awesome social engineering resources.](https://github.com/giuliacassara/awesome-social-engineering)

[v2-dev/awesome-social-engineering](https://github.com/v2-dev/awesome-social-engineering)
list of awesome social engineering resources

## Ally advice

Protect yourself from fraud with these tips.
Cybercrime and fraud are serious threats to your personal information, and lately scams are on the rise. Please use caution when discussing your Ally accounts over the phone or via text message as you could be interacting with a scammer, disguised as an Ally employee.

Keep in mind, while we do make follow-up calls occasionally, we don't call or text our customers out of the blue.

Tips to protect yourself:

    Deny requests for a password. We don't call or text you and ask for your Ally account password to verify your account. These scammers will.
    Ask questions. Asking questions like "When's the last time I called you?" may prompt the fraudster to hang up.
    Call us directly and report fraud. If someone calls or texts you for your Ally Bank information, don't respond and call us at 1-833-226-1520 to report it.
    Stay aware. Fraudsters are constantly changing the ways they try to cheat you out of your money. Learn how to protect yourself against the latest smishing and social media scams.
    If you use Zelle, Ally sends text messages from a short 6-digit code. Fraudsters will sometimes send text messages from 10-digit phone numbers claiming to be Ally. If you receive a suspicious message, don't respond and, instead, call the number on the back of your Ally card.

Tips to protect yourself:

    We will never call or text you to ask for your Ally Bank account username, password, card number, or your one-time passcode (OTP).
    Call us directly and report fraud. If someone calls or texts you for your Ally Bank information, don’t respond and call us at 1-877-247-2559 to report it.
    If you use Zelle, Ally sends text messages from a short 6-digit code. Fraudsters will sometimes send text messages from 10-digit phone numbers claiming to be Ally. If you receive a suspicious message, don’t respond and call us at 1-877-247-2559 to report it.
    Pause and read text messages fully. Fraudsters will sometimes act with a sense of urgency - trying to trick you into acting fast.

## bad ui

[Bad UI is causing people to get scammed | Hacker News](https://news.ycombinator.com/item?id=32026951)
[Bad UI is causing people to get scammed | Ashlan's blog](https://ashlan.com/blog/bad-ui-is-causing-people-to-get-scammed/)

## copycats

[Notepad++: Help us to take down the parasite website | Hacker News](https://news.ycombinator.com/item?id=39968761)
[Help us to take down the parasite website | Notepad++](https://notepad-plus-plus.org/news/help-to-take-down-parasite-site/)

## data harvesting

[David Gilbertson](https://hackernoon.com/im-harvesting-credit-card-numbers-and-passwords-from-your-site-here-s-how-9a8cb347c5b5)
(2018) I’m harvesting credit card numbers and passwords from your site. Here’s how.
> If an attacker successfully injects any code at all, it’s pretty much game over

## deepfakes - getting jobs

[FBI: Stolen PII and deepfakes used to apply for remote tech jobs | Hacker News](https://news.ycombinator.com/item?id=31908874)
[FBI: Stolen PII and deepfakes used to apply for remote tech jobs](https://www.bleepingcomputer.com/news/security/fbi-stolen-pii-and-deepfakes-used-to-apply-for-remote-tech-jobs/)

[A fake job offer took down Axie Infinity | Hacker News](https://news.ycombinator.com/item?id=32001742)
[How a fake job offer took down the world's most popular crypto game | The Block](https://www.theblock.co/post/156038/how-a-fake-job-offer-took-down-the-worlds-most-popular-crypto-game)

## doxxing

[Hackers can use credit bureaus to dox nearly anyone in America | Hacker News](https://news.ycombinator.com/item?id=37222672)
[The Secret Weapon Hackers Can Use to Dox Nearly Anyone in America for $15](https://www.404media.co/the-secret-weapon-hackers-can-use-to-dox-nearly-anyone-in-america-for-15-tlo-usinfosearch-transunion/)

## elder abuse - Schwab

At Schwab, we’re dedicated to shedding light on the often unseen and unspoken issue of elder abuse, which includes physical, emotional, and financial mistreatment of older adults. Financial abuse of seniors is a particularly concerning aspect of elder abuse, involving the unauthorized or improper use of an older person's funds, property, or resources.

Here’s what you can do to help protect the seniors in your life:
- Stay informed: Be aware of the common signs of financial exploitation, such as sudden changes in accounts, estate planning documents, or unexplained withdrawals or spending.
- Communicate: Maintain open lines of communication with elderly family members about their financial matters.
- Report suspicions: If you suspect that an elderly person is being financially exploited, it's crucial to report it. You can contact local adult protective services, law enforcement, and financial institutions where they hold accounts.
- Talk about money: Talk to your aging parents about money and creating a financial plan to manage their affairs. Learn more at [Aging Parents? 5 Money Topics to Discuss | Charles Schwab](https://www.schwab.com/learn/story/aging-parents-5-money-topics-to-discuss).

Here’s how seniors can protect themselves:
- Stay connected: Keep in touch with loved ones and remain active in your community to reduce isolation and vulnerability.
- Regularly review your finances: If you have questions, seek assistance from a trusted family member, a financial advisor, or an attorney. Find out more about how to prepare at [Planning for Diminished Capacity | Charles Schwab](https://www.schwab.com/schwabsafe/planning-for-diminshed-capacity).
- Know your rights: Learn about your rights and the resources available to you. This includes understanding how to use legal tools like powers of attorney and wills. Check out [Financial Caregiving 101 |Charles Schwab](https://www.schwab.com/schwabsafe/financial-caregiving-101) to learn more.
- Add a trusted contact: Designate a trusted contact to provide another layer of protection to help keep your accounts safe. You can find out more about trusted contacts by reading [Why You Should Establish Trusted Contacts | Charles Schwab](https://www.schwab.com/learn/story/why-you-should-establish-trusted-contacts).
- Seek professional advice: Consult with professionals when making significant decisions, especially those involving legal, financial, or health matters.
- Protect your personal information: Don't give out your Social Security, credit card, or bank account numbers over phone or email.

## emergency data requests

[Hackers gaining power of subpoena via fake "emergency data requests" | Hacker News](https://news.ycombinator.com/item?id=30842757)
[Hackers Gaining Power of Subpoena Via Fake "Emergency Data Requests" - Krebs on Security](https://krebsonsecurity.com/2022/03/hackers-gaining-power-of-subpoena-via-fake-emergency-data-requests/)

## exploiting authentication

[Mozilla Standards Positions Opposes Web Integrity API | Hacker News](https://news.ycombinator.com/item?id=36857032)
[Request for Position: Web Environment Integrity API · Issue #852 · mozilla/standards-positions · GitHub](https://github.com/mozilla/standards-positions/issues/852)

[Social engineering takeovers of open source projects | Hacker News](https://news.ycombinator.com/item?id=40267666)
[Open Source Security (OpenSSF) and OpenJS Foundations Issue Alert for Social Engineering Takeovers of Open Source Projects - Open Source Security Foundation](https://openssf.org/blog/2024/04/15/open-source-security-openssf-and-openjs-foundations-issue-alert-for-social-engineering-takeovers-of-open-source-projects/)

## exploiting trust

[The dark side of the Mac App Store | Hacker News](https://news.ycombinator.com/item?id=35677813)
[The Dark Side of the Mac App Store: How Scam Apps and Shady Developers Are Preying on Users | by Privacy1St | Medium](https://privacyis1st.medium.com/the-dark-side-of-the-mac-app-store-how-scam-apps-and-shady-developers-are-preying-on-users-b28062642e6)

[Is Your Credit Card Stolen? Check for free!](https://ismycreditcardstolen.com)

[Auction company poses online with items it doesn't own](https://www.newschannel5.com/news/newschannel-5-investigates/fake-online-auctions-taking-money-from-unsuspecting-customers-looking-for-deals)

[Dell Hacked | Watch Out For Social Engineering Scam | b3n.org](https://b3n.org/dell-hacked-watch-out-for-social-engineering-scams)

[CyberheistNews Vol 13 #28 [Beware] Microsoft Teams Exploit Uses Social Engineering to Spread Malware](https://blog.knowbe4.com/cyberheistnews-vol-13-28-beware-microsoft-teams-exploit-uses-social-engineering-to-spread-malware)

[Verizon fell for fake "search warrant," gave victim's phone data to stalker | Hacker News](https://news.ycombinator.com/item?id=38576530)
[Verizon fell for fake "search warrant," gave victim's phone data to stalker | Ars Technica](https://arstechnica.com/tech-policy/2023/12/verizon-fell-for-fake-search-warrant-gave-victims-phone-data-to-stalker/)

## fake id

[A forged Apple employee badge | Hacker News](https://news.ycombinator.com/item?id=40384013)
[The Forged Apple Employee Badge – cabel.com](https://cabel.com/2024/05/16/the-forged-apple-employee-badge/)

[Former University of Iowa hospital employee used fake identity for 35 years | Hacker News](https://news.ycombinator.com/item?id=39938005)
[Former University of Iowa Hospital employee used fake identity for 35 years | The Gazette](https://www.thegazette.com/crime-courts/former-university-of-iowa-hospital-employee-used-fake-identity-for-35-years/)

[101 Ways I Screwed Up Making a Fake Identity – tisiphone.net](https://tisiphone.net/2016/10/13/101-ways-i-screwed-up-making-a-fake-identity/)
[Lesley Carhart (TisiPhone)](https://tisiphone.net/)

## GPS tracking

[Someone attached an AirTag to my car while I was in a bar | Hacker News](https://news.ycombinator.com/item?id=29615268)
[Twitter](https://web.archive.org/web/20211222152437/https://twitter.com/Sega__JEANAsis/status/1472198123506257937)

[An update on AirTag and unwanted tracking | Hacker News](https://news.ycombinator.com/item?id=30290043)
[An update on AirTag and unwanted tracking - Apple](https://www.apple.com/newsroom/2022/02/an-update-on-airtag-and-unwanted-tracking/)

## hacktivism

[Hacktivists fund their operations using common cybercrime tactics](https://www.bleepingcomputer.com/news/security/hacktivists-fund-their-operations-using-common-cybercrime-tactics/)

## misusing authority

[A Hacker Group Has Been Framing People for Crimes They Didn't Commit](https://gizmodo.com/a-hacker-group-has-been-framing-people-for-crimes-they-1848522497)

## misusing authority - takedown requests

[You can deactivate anyone's WhatsApp account by simply sending an email | Hacker News](https://news.ycombinator.com/item?id=36762879)
[Jake Moore on X: "I tried it on my test device. It worked! https://t.co/WH5T2oa8W7" / X](https://twitter.com/JakeMooreUK/status/1680962682726363136)

[SAVEVIDEO.ME](https://savevideo.me/)
[An impersonator issued a fake Reddit take down notice against SaveVideo | Hacker News](https://news.ycombinator.com/item?id=27818514)
[The End is Nigh : u/SaveVideo](https://np.reddit.com/user/SaveVideo/comments/oimo6y/the_end_is_nigh/)

## ransomware

[Why ransomware hackers love a holiday weekend | Ars Technica](https://arstechnica.com/information-technology/2021/09/why-ransomware-hackers-love-a-holiday-weekend)
- the timing is nice for them

[Home | The No More Ransom Project](https://www.nomoreransom.org/en/index.html)
[The No More Ransom Project](https://www.nomoreransom.org/en/decryption-tools.html)

[80% of orgs that paid the ransom were hit again | Hacker News](https://news.ycombinator.com/item?id=27552611)
[Cybereason: 80% of orgs that paid the ransom were hit again | VentureBeat](https://venturebeat.com/security/cybereason-80-of-orgs-that-paid-the-ransom-were-hit-again/)

[Ransomware gangs are complaining that other crooks are stealing their ransoms | Hacker News](https://news.ycombinator.com/item?id=28728137)
[Ransomware gangs are complaining that other crooks are stealing their ransoms | ZDNET](https://www.zdnet.com/article/these-ransomware-crooks-are-complaining-they-are-getting-ripped-off-by-other-ransomware-crooks/)

[PSA | Ransomware (All Current Vegas Pro 17 Torrents) : Piracy](https://old.reddit.com/r/Piracy/comments/cxbn33/psa_ransomware_all_current_vegas_pro_17_torrents/)

## robocallers

[FCC fines robocaller a record $300M after blocking billions of their scam calls | Hacker News](https://news.ycombinator.com/item?id=36989845)
[FCC fines robocaller a record $300M after blocking billions of their scam calls | TechCrunch](https://techcrunch.com/2023/08/03/fcc-fines-robocaller-a-record-300m-after-blocking-billions-of-their-scam-calls/)
[FCC to remove companies from robocall database for non-compliance [pdf] | Hacker News](https://news.ycombinator.com/item?id=33097469)
[DOC-387840A1.pdf](https://docs.fcc.gov/public/attachments/DOC-387840A1.pdf)
[FCC bans unsolicited AI-generated robocalls | WORLD](https://wng.org/sift/fcc-bans-unsolicited-ai-generated-robocalls-1707509758)
[FCC rules AI-generated voices in robocalls illegal | Hacker News](https://news.ycombinator.com/item?id=39304736)
[FCC Makes AI-Generated Voices in Robocalls Illegal | Federal Communications Commission](https://www.fcc.gov/document/fcc-makes-ai-generated-voices-robocalls-illegal)
[RoboShout Anonymous RoboCall Service](https://www.roboshout.com/)
[Report Phone Spam - Shut down robocallers and text spammers | Hacker News](https://news.ycombinator.com/item?id=38507446)
[Report Phone Spam - Shut down robocallers & text spammers](https://reportphonespam.org/)

## scams

[Scams: Relatively Common and Anxiety-Inducing for Americans](https://news.gallup.com/poll/544643/scams-relatively-common-anxiety-inducing-americans.aspx)

[Americans duped into losing $10B by illegal Indian call centres in 2022: report | Hacker News](https://news.ycombinator.com/item?id=34149528)
[Call Centre Fraud: Illegal desi call centres behind $10 billion loss to Americans in 2022 | India News - Times of India](https://timesofindia.indiatimes.com/india/illegal-desi-call-centres-behind-10-billion-loss-to-americans-in-2022/articleshow/96501320.cms)

[I lost €4k in a Facebook scam | Hacker News](https://news.ycombinator.com/item?id=24469921)
[Niek/facebook-scam/README.md at master · Niek/Niek · GitHub](https://github.com/Niek/Niek/blob/master/facebook-scam/README.md)

[Social engineering scam that nearly cost me all of my ETH | Hacker News](https://news.ycombinator.com/item?id=30322715)
[thomasg.eth on Twitter: "For the past two weeks, I've been targeted in an extremely thorough social engineering scam that nearly cost me all of my ETH. I'm super lucky to have made it through unscathed. Here's the story 👇"](https://web.archive.org/web/20220213005338/https://twitter.com/thomasg_eth/status/1492663192404779013)

[Do not rug on me: Zero-dimensional Scam Detection | Hacker News](https://news.ycombinator.com/item?id=33572361)
[[2201.07220] Do not rug on me: Zero-dimensional Scam Detection](https://arxiv.org/abs/2201.07220)

[Gift card gang extracts cash from 100k inboxes daily | Hacker News](https://news.ycombinator.com/item?id=28394256)
[Gift Card Gang Extracts Cash From 100k Inboxes Daily - Krebs on Security](https://krebsonsecurity.com/2021/09/gift-card-gang-extracts-cash-from-100k-inboxes-daily/)

[USPS text scammers duped his wife, so he hacked their operation | Hacker News](https://news.ycombinator.com/item?id=41197300)
[Hacking the Scammers | theB10G](https://blog.smithsecurity.biz/hacking-the-scammers)

## schwab advice

Stay safe this tax season: Your guide to preventing check fraud.

As we step into tax season, it's crucial to stay vigilant against financial crimes that could affect your financial security and peace of mind.

Check fraud, which involves illegal activities like forging, stealing, altering, or creating counterfeit checks, is a prevalent issue, especially during tax season. It's important to be aware of how this can happen, the signs to look out for, and understanding how to mitigate the associated risks.
Here are six tips you can use to protect yourself and your assets:
1. Sign up for USPS email alerts:
Use the USPS's Informed Delivery service for daily emails on incoming mail. It's free at USPS.com.
2. Request direct deposits:
Instead of receiving physical checks, request direct deposits into your account. It's safer and quicker.
3. Pay bills electronically:
For added security, use electronic or mobile payment methods like e-checks or ACH payments.
4. Track your checks:
Follow up on undelivered checks promptly and notify your financial institution of any missing checks.
5. Reduce outgoing mail theft:
Take your mail directly to the post office or drop it into a secure mailbox before the last collection.
6. Guard against alterations:
Use permanent black ink and avoid leaving blank spaces on payee or amount lines.

If you suspect fraud:
- Contact your financial institution and local law enforcement to file a report.
- If mail was involved, report it to the United States Postal Inspection Service at uspis.gov/report or call 1-877-876-2455.
 
Your financial safety and security are our priority.
- We've shared these tips with you as these are steps you can take to significantly reduce the risk of check fraud and ensure your financial well-being remains intact during this busy season and beyond. If you ever suspect fraud related to your Schwab account, we'll be with you every step of the way.
- For more security tools, resources, and steps you can take to help safeguard your personal information and assets, visit SchwabSafe®. We're dedicated to protecting your account and working with you to make it even more secure.

## social media influence

[Israel reportedly used fake social accounts to garner support from US lawmakers | Hacker News](https://news.ycombinator.com/item?id=40584135)
[Israel Secretly Targeted American Lawmakers With Gaza War Influence Campaign - National Security & Cyber - Haaretz.com](https://www.haaretz.com/israel-news/security-aviation/2024-06-05/ty-article-magazine/.premium/israel-secretly-targeted-american-lawmakers-with-gaza-war-influence-campaign/0000018f-e7c8-d11f-a5cf-e7cb62af0000)

[Some notes on influenceering | Hacker News](https://news.ycombinator.com/item?id=40578668)
[Some notes on influencering - lcamtuf’s thing](https://lcamtuf.substack.com/p/some-notes-on-influenceering)

[Tom M. Sittler](https://thomas-sittler.github.io/facebook/)
(2017) Fighting the evil influence of Facebook (but keeping the good bits): a manifesto and how-to guide

[Johann Hari](https://www.theguardian.com/science/2022/jan/02/attention-span-focus-screens-apps-smartphones-social-media)
(2022) Your attention didn’t collapse. It was stolen
Social media and many other facets of modern life are destroying our ability to concentrate. We need to reclaim our minds while we still can

[Trevor Haynes](https://sitn.hms.harvard.edu/flash/2018/dopamine-smartphones-battle-time/)
(2018) Dopamine, Smartphones & You: A battle for your time

[Daniel Miessler](https://danielmiessler.com/blog/how-to-decide-who-to-friend-on-facebook-linkedin-and-twitter/)
(2010) How To Decide Who To Friend on Facebook, LinkedIn, and Twitter

## surveillance - technology

[AI headphones let wearer listen to a single person in a crowd by looking at them | Hacker News](https://news.ycombinator.com/item?id=40508278)
[AI headphones let wearer listen to a single person in a crowd, by looking at them just once | UW News](https://www.washington.edu/news/2024/05/23/ai-headphones-noise-cancelling-target-speech-hearing/)

## swatting

[A man has been swatted 47 times for making a joke about Norm Macdonald | Hacker News](https://news.ycombinator.com/item?id=39331771)
[This man has been swatted 47 times for making a joke about Norm Macdonald | The Independent](https://www.independent.co.uk/news/world/americas/crime/swatting-nikki-haley-trump-fbi-stalkers-b2494097.html)

[A Computer Generated Swatting Service Is Causing Havoc Across America : technology](https://old.reddit.com/r/technology/comments/12kvb4f/a_computer_generated_swatting_service_is_causing/)

## text messaging

[Things the guys who stole my phone have texted me to try to get me to unlock it | Hacker News](https://news.ycombinator.com/item?id=40578460)
[Things the guys who stole my phone have texted me to try to get me to unlock it - Gothamist](https://gothamist.com/news/things-the-guys-who-stole-my-phone-have-texted-me-to-try-to-get-me-to-unlock-it)

## threats

[Please help. Someone in my stream chat is making doxxing and swatting threats.](https://old.reddit.com/r/techsupport/comments/152jfdk/please_help_someone_in_my_stream_chat_is_making/)

["I will slaughter you" | Hacker News](https://news.ycombinator.com/item?id=26192025)
["I will slaughter you" | daniel.haxx.se](https://daniel.haxx.se/blog/2021/02/19/i-will-slaughter-you/)

## identity theft

[How To Prevent Identity Theft | U.S. Bank](https://www.usbank.com/financialiq/manage-your-household/protect-your-assets/How-you-can-prevent-identity-theft.html)

[What you need to know about identity theft | U.S. Bank](https://www.usbank.com/financialiq/manage-your-household/protect-your-assets/what-you-need-to-know-about-identity-theft.html)

[How-to guide: What to do if your identity is stolen | U.S. Bank](https://www.usbank.com/financialiq/manage-your-household/protect-your-assets/identity-stolen-5-steps-to-take-immediately.html)

[Home Page](https://www.idtheftcenter.org/)

## money muling

[Money muling 101: Recognizing and avoiding this increasingly common scam](https://www.usbank.com/financialiq/manage-your-household/protect-your-assets/money-muling-101-recognizing-avoiding.html)

## smart device

[4 ways to outsmart your smart device | U.S. Bank](https://www.usbank.com/financialiq/manage-your-household/protect-your-assets/4-ways-outsmart-smart-device.html)

## sockpuppets

[Creating Sockpuppet Accounts](https://www.aaroncti.com/lets-talk-about-sockpuppet-accounts/)
Blog on creating sockpuppets that work by me (yes, shameless self-promotion).

## wardriving

[Wardriving - Wikipedia](https://en.wikipedia.org/wiki/Wardriving)

## deepfakes

[Protecting yourself from AI deepfakes @ AskWoody](https://www.askwoody.com/2024/protecting-yourself-from-ai-deepfakes/)

## fraud

[Diseconomies of scale in fraud, spam, support, and moderation | Hacker News](https://news.ycombinator.com/item?id=39424688)
[Diseconomies of scale in fraud, spam, support, and moderation](https://danluu.com/diseconomies-scale/)

[I'm a scam prevention expert and I got scammed | Hacker News](https://news.ycombinator.com/item?id=30869427)
[Lupinia Studios - I'm a Scam Prevention Expert, and I Got Scammed](https://www.lupinia.net/writing/tech/scammed.htm)

[Avoiding fraud and scams | U.S. Bank](https://www.usbank.com/financialiq/manage-your-household/protect-your-assets/banking-basics-avoiding-fraud.html)

[U.S. Bank asks: Are you safe from fraud? | U.S. Bank](https://www.usbank.com/financialiq/manage-your-household/protect-your-assets/usbank-asks-are-you-safe-from-fraud.html)

[Banks Never Ask That! Fraud Prevention](https://www.banksneveraskthat.com/?et_cid=483328&et_rid=206083458)

[Security Knowledge Center | SchwabSafe | Charles Schwab](https://www.schwab.com/schwabsafe/security-knowledge-center)

[Security Center: Our Approach, Fraud & Identity Protection, Tips & More | Ally](https://www.ally.com/security/)

## fraud - payments

[Facebook hacker beat my 2FA, bricked my Oculus, and hit the company credit card | Hacker News](https://news.ycombinator.com/item?id=28249977)
[A Facebook hacker beat my 2FA, bricked my Oculus Quest, and hit the company credit card - CodeWritePlay](https://codewriteplay.com/2021/08/20/a-facebook-hacker-beat-my-2fa-bricked-my-oculus-quest-and-hit-the-company-credit-card/)

[McKinney Woman Finds Credit Card Skimmer Inside Gas Station - NBC 5 Dallas-Fort Worth](https://www.nbcdfw.com/news/local/mckinney-woman-finds-credit-card-skimmer-hidden-in-plain-sight-inside-gas-station/2924773)

[PayPal phishing scam uses invoices sent via PayPal | Hacker News](https://news.ycombinator.com/item?id=32511086)
[PayPal Phishing Scam Uses Invoices Sent Via PayPal - Krebs on Security](https://krebsonsecurity.com/2022/08/paypal-phishing-scam-uses-invoices-sent-via-paypal/)

[Fight the battle against payments fraud | U.S. Bank](https://www.usbank.com/financialiq/improve-your-operations/minimize-risk/fight-the-battle-against-payments-fraud.html)

[Protect yourself from financial exploitation | U.S. Bank](https://www.usbank.com/financialiq/landing-page/protect-yourself.html)

[Protecting yourself and your assets from financial exploitation | U.S. Bank](https://www.usbank.com/financialiq/manage-your-household/protect-your-assets/Recognize-React-Report-Protecting-yourself-and-your-assets-from-financial-exploitation.html)

[What is online banking & is it safe? | U.S. Bank](https://www.usbank.com/financialiq/manage-your-household/protect-your-assets/is-online-banking-safe.html)

[How to spot a credit repair scam |U.S. Bank](https://www.usbank.com/financialiq/manage-your-household/establish-credit/How-spot-credit-repair-scam.html)

[How to avoid being the victim of a digital payments scam | U.S. Bank](https://www.usbank.com/financialiq/manage-your-household/protect-your-assets/How-to-avoid-being-victim-digital-payments-scam.html)

## fraud - ai

[Fraudsters Use AI to Sell Fake Pirated Pre-Release Tracks, Universal Music Warns * TorrentFreak](https://torrentfreak.com/fraudsters-use-ai-to-sell-fake-pirated-pre-release-tracks-universal-music-warns-231215/)

## fraud - elder

[How to keep your assets safe | U.S. Bank](https://www.usbank.com/financialiq/plan-your-future/health-and-wellness/How-to-protect-yourself-against-elder-financial-exploitation.html)

[Caregivers can help protect against financial exploitation | U.S. Bank](https://www.usbank.com/financialiq/manage-your-household/protect-your-assets/Recognize-React-Report-Caregivers-can-help-protect-against-financial-exploitation.html)

## fraud - election

[Summary of Election Fraud in the 2020 Presidential Election in the Swing States - Dude Named Ben](https://namedben.com/summary-of-election-fraud-in-the-2020-presidential-election-in-the-swing-states/)

## fraud - online

[How to spot an online scam | U.S. Bank](https://www.usbank.com/financialiq/manage-your-household/protect-your-assets/spot-online-scam.html)

## fraud - sms

[How SMS fraud works and how to guard against it | Hacker News](https://news.ycombinator.com/item?id=34972712)
[How SMS Fraud Works and How to Guard Against It](https://apuchitnis.substack.com/p/how-sms-fraud-works-and-how-to-guard-against-it)

[What's the deal with all those weird wrong-number texts? | Hacker News](https://news.ycombinator.com/item?id=31949731)
[What's the deal with weird wrong-number texts?](https://maxread.substack.com/p/whats-the-deal-with-all-those-weird)

## fraud - student

[Learn to spot and protect yourself from common student scams](https://www.usbank.com/financialiq/manage-your-household/student-center/common-student-scams.html)

[How to avoid student loan scams | U.S. Bank](https://www.usbank.com/financialiq/manage-your-household/protect-your-assets/how-to-avoid-student-loan-scams.html)

## scams - specific

[The 'Zelle fraud' scam: how it works, how to fight back | Hacker News](https://news.ycombinator.com/item?id=29282870)
[The 'Zelle Fraud' Scam: How it Works, How to Fight Back - Krebs on Security](https://krebsonsecurity.com/2021/11/the-zelle-fraud-scam-how-it-works-how-to-fight-back/)

## using authentication

[How do hackers find where else you use your compromised password? : hacking](https://old.reddit.com/r/hacking/comments/sl3tf5/how_do_hackers_find_where_else_you_use_your)