Online surveys and quizzes are all over the internet. They're quick and cheap to set up, easy for recipients to fill out, and simple for researchers to interpret. It's no wonder that they remain a popular tool for marketers to reach and research their target audiences. Many of them are indeed legitimate and even paid or offer other rewards in return. Every little helps, especially during the cost-of-living crisis. Or perhaps you have another reason to participate in them - assuming you also understand the value of the information you may be disclosing about yourself and your family. Since it's just as quick and easy for scammers to mimic legit surveys for their own ends and dangle 'rewards' in exchange for answers to a couple of seemingly innocuous questions, how can you tell a legitimate survey from a phoney one? Whether the scammers are looking to steal your passwords, credit card details or other information, install malware on your PC or another device, or add you to more spam mailing lists, it makes sense to understand what the risks are, and how to "Separate the wheat from the chaff". These scam campaigns are increasingly big business for cybercriminals. One study recently revealed that a single criminal network was making US$80 million per month from global victims - using surveys and giveaways from 120 well-known brands to lure its victims. Recipients are offered money, a gift card, a gadget, entry to a sweepstake, money off their next purchase, or any number of non-existent prizes if they participate in the survey. Scammers may request the participant pays a 'processing fee,' 'taxes' or a 'shipping/handling' charge in order to receive the non-existent prize. Clicking on the message will take the user not to a legitimate brand's website but an imposter website. Often, the user is redirected multiple times en route to the fake survey, as was the case with this scam, which promised a $500 Ulta Beauty gift card to victims. Victims are often asked to share the survey/giveaway offer with their social media or other contacts, which distributes the scam even further while adding legitimacy in the eyes of recipients. If you're unlucky enough to fall for one of these scams, there are several potential outcomes. Be asked to fill out personal information that is then processed to add you to a spamming list. Be asked to fill out personal and financial information that results in identity fraud and/or follow-on phishing attempts. Unwittingly install malware on your machine by visiting the scam site. Sometimes the survey site may even flash up fake AV warnings. Malware could steal your login details for banking or crypto accounts, encrypt your files unless you pay a ransom, co-opt your machine into a botnet etc. Be asked to pay some money for nothing, such as membership of a group which will share details of paid surveys with you. Be hit with an advanced fee scam - e.g., where you're asked to pay a small fee in return for a prize that never materializes. The bottom line is that survey scams lead to nothing but monetary or data loss - plus the emotional distress of trying to get your money back and cancelling bank cards. With the above in mind, it makes sense to understand the tell-tale signs of a survey scam, what to do in order to stay safe and what should happen if you fall victim. Don't blindly trust survey offers, even if sent from a friend or family member. Research the giveaway to see if it's being reported as a scam or if it's legitimate. Install a security solution from a reputable vendor on all devices and PCs. Keep your OS and apps updated across all PCs and devices. Only trust official app stores, such as Google Play and the App Store. Keep informed about current threats - it will provide a useful early warning system. Use strong and unique passwords together with multi-factor authentication for all important accounts. Even if scammers steal your passwords, it's less likely they can access those accounts with 2FA enabled. Don't trust the caller ID/sender number for unsolicited messages. Never pay to retrieve 'funds' - these are always scams. If the worst happens, report compromised cards immediately to your bank to have them cancelled, or freeze them first via your banking app. Change any passwords that may have been compromised. Surveys may be a useful tool for marketers, but they are often of limited value to consumers. Best avoid them altogether unless you have a very good reason not to.
This Cyber News was published on www.welivesecurity.com. Publication date: Sat, 04 Feb 2023 06:24:03 +0000