Avoid This Fake Zoom Meeting Invite Phishing Scam
Wagoner County Sheriff Chris Elliott would like the Wagoner County citizens to be aware about a new Zoom scam circulating. The popularity of Zoom has made it a target for phishing attacks and the Better Business Bureau is now warning users to avoid sketchy meeting invites that could infect your system with malware.
How the phishing scam works
A scammer will send you an unsolicited email, text, or social media message branded with a Zoom logo and including some kind of notification about your account, like "your Zoom account has been suspended, click here to reactivate," "please activate your account," or "you missed a meeting, click here to see the details and reschedule."
These phony invites have links that, when clicked, either download malware directly onto your computer or take you to a fake Zoom login page. The fake login page exists to trick users into inputting their email and Zoom password, giving them control over your account. Scammers might also try to use your email and password combination to log into other services or platforms. Many people reuse the same password across multiple accounts.
How to avoid getting tricked
Throughout the pandemic-and before-the mantra has remained the same when it comes to unsolicited messages: do not click on anything. This includes links, but also photos (which can be clickable) and files. The Better Business Bureau recommends taking these precautions, which will help you avoid falling for the scam:
• Double check the sender's information. Zoom.com and Zoom.us are the only official domains for Zoom. If an email comes from a similar looking domain that does not quite match the official domain name, it is probably a scam.
• Never click on links in unsolicited emails. Phishing scams always involve getting an unsuspecting individual to click on a link or file sent in an email that will download dangerous malware onto their computer. If you get an unsolicited email and you are not sure who it really came from, never click on any links, files, or images it may contain.
• Resolve issues directly. If you receive an email stating there is a problem with your account and you are not sure if it is legitimate, contact the company directly. Go to the official website by typing the name in your browser and find the "Contact Support" feature to get help.
Also, it is worth spot-checking any suspicious notifications or login pages for spelling errors, which are an obvious clue they are not legit.
If you are targeted by a phishing scam, the Better Business Bureau asks you to report it at BBB.org/ScamTracker.