Compromise scammers target Facebook and AT&T payments to steal data
Internet expert shares tips for avoiding phishing scams using AI
Kurt ‘The CyberGuy’ Knutsson shares practical ways to avoid falling victim to AI-generated phishing scams and discusses a report that North Korean agents are posing as IT workers to funnel money into the country’s nuclear program.
newYou can now listen to Fox News articles!
Sometimes, a data breach results in more than just free credit monitoring. Recently, Facebook began paying its $725 million settlement, and AT&T is preparing to distribute $177 million. These payments attracted the attention of scammers.
Now, emails and websites demanding fake settlements flood inboxes. It looks convincing, but behind the simple design and formal language lies a trap for your Social Security number, banking information, and more. So how can you make sure you get your money back without losing more in the process?
Sign up for my free CyberGuy report
Get the best tech tips, breaking security alerts, and exclusive deals delivered straight to your inbox. Plus, you’ll get instant access to my Ultimate Scam Survival Guide – for free when you join my site CyberGuy.com Newsletter.
Top 5 Overpayment Scams to Avoid
Why are fake settlement sites so convincing?
Settlement claims websites rarely look polished. Most have generic layouts, long URLs, and simple forms that request the claim ID from your email or postcard. This makes it easy for scammers to imitate them. To test how simple it was, we created a fake settlement site (below) in minutes using AI tools like ChatGPT.
To steal your data, scammers create fake settlement sites that mimic the real ones (Kurt “CyberGuy” Knutson)
If we can do that, you can bet that criminals are already exploiting the same shortcuts. Facebook was the target. A fake website once popped up around the Equifax settlement, fooling thousands before it was shut down. Lesson? If a site looks unusual, it doesn’t necessarily mean it’s fake, but it should ask you to double-check before entering your details or clicking on any links.
Red flags reveal fake settlement sites
Spotting a scam often comes by noticing small details. Pay attention to these common warning signs before handing over your information.
Requests for a lot of personal data
If a site asks for your full Social Security number or the names of your children, stop. For example, the official Equifax settlement requested only the last six digits of Social Security numbers. Genuine claims sites may ask for limited information (such as the last four digits of your Social Security number), but they rarely ask for full Social Security or bank details.
Promises advance payout estimates
Real administrators count payments only after the claim period has expired.
Texts or social media messages
Settlements are announced by mail or email, not by direct messages or random SMS.
Fraud can be detected through red flags such as individual URLs, urgent countdowns, or fee requests (Kurt “CyberGuy” Knutson)
Odd or misspelled URLs
Even one extra character in a web address is a sign of a fake site. Legitimate compromises use official or clearly named administrator domains. Be wary of titles with unusual additions, such as “Secure Payment” or “Claims Payment.”
Urgent language or countdown
Scammers rely on urgency to pressure you to act quickly. True settlement locations do not require 24-hour deliveries.
Processing fee check boxes
A sure giveaway of fake. True settlers never ask for money to make or receive your payments.
Cheap confidence badges
Scam sites often put up fake “secure” seals. Look for recognized security seals and make sure they can be clicked and verified.
General contact information associated with the suspicious domain
The official websites list multiple verifiable contacts. If the email or phone number matches the strange domain, this is a red flag.
Grammatical or spelling errors in the fine print
Inaccurate errors in seemingly legitimate text are a classic sign that you’re looking at a scam.
Start with official FTC links or mailed notices to file claims safely (Kurt “CyberGuy” Knutson)
How to Safely Handle Settlement Claim Notices
Before filing a claim, follow these steps to ensure you are dealing with a legitimate settlement site and protect your information.
1) Start with the FTC.
The Federal Trade Commission maintains updated lists of approved class action settlements in ftc.gov/enforcement/refunds. Legitimate links always point to a website with a .gov domain. If your email sends you elsewhere, treat it with caution.
2) Check other sources
Trusted ports often cover large settlements and include secure links. ClassAction.org is another resource for checking legitimate URLs.
3) Skip links, use mail
Your claim notice may include a mailing address. Submitting a paper form avoids the minefield of digital phishing altogether.
4) Use powerful antivirus software
Powerful antivirus software can block malicious links, warn you about dangerous websites, and prevent malware from taking over your device.
The best way to protect yourself from malicious links that install malware and potentially access your private information is to install strong antivirus software on all your devices. This protection can also alert you to phishing emails and ransomware, keeping your personal information and digital assets safe.
Get my picks for the best antivirus protection winners of 2025 for Windows, Mac, Android, and iOS at CyberGuy.com.
How Retirees Can Stop Fake Debt Collection Scams
5) Try a data removal service
Data scraping services scrub your personal information from brokers’ lists, making it more difficult for criminals to target you.
While no service can guarantee complete removal of your data from the Internet, a data removal service is truly a smart choice. It’s not cheap, and neither is your privacy. These services do all the work for you by systematically monitoring and scraping your personal information from hundreds of websites. This gives me peace of mind and has proven to be the most effective way to clear your personal data from the Internet. By limiting the information available, you reduce the risk of fraudsters cross-referencing data from breaches to information they might find on the dark web, making it harder for them to target you.
Check out my top picks for data removal services and get a free check to see if your personal information really exists on the web by visiting CyberGuy.com.
Get a free check to see if your personal information is already on the web: Cyberguy.com.
6) Never pay to file
If a site asks for an “administrative fee” or “processing fee,” close it immediately. Real settlement officials will never ask for money.
7) Report suspicious sites
Fake spot? Protect others by reporting it to:
- FTC Complaint Assistant at reportfraud.ftc.gov/
- Internet Crime Complaints Center (IC3) in ic3.gov/
- The Consumer Financial Protection Bureau (CFPB). consumerfinance.gov/about-us/the-bureau/
Prompt reporting helps authorities stop scams before more people fall victim.
Can you tell the difference between a real email and a fake one?
Take our quick test at Cyberguy.com/ScamCheck Ro Learn how to spot phishing scams, protect your inbox, and stay ahead of hackers.
Key takeaways for Kurt
Class settlements can seem like rare victories for consumers after a data breach. But scammers consider them easy hunting grounds. The best defense is doubt. Check URLs, avoid clicking on direct links, and never disclose details that don’t match the intent of the claim. Your returns should help you recover, not put you at greater risk.
Have you ever received a settlement notice and felt suspicious, and how did you handle it? Let us know by writing to us at CyberGuy.com.
Sign up for my free CyberGuy report
Get the best tech tips, breaking security alerts, and exclusive deals delivered straight to your inbox. Plus, you’ll get instant access to my Ultimate Scam Survival Guide – for free when you join my site CyberGuy.com Newsletter.
CLICK HERE TO GET THE FOX NEWS APP
Copyright 2025 CyberGuy.com. All rights reserved.