During the graduation season, con artists are circulating deceptive Evite-style messages, tricking individuals into divulging their passwords and security codes.
WASHINGTON — As summer approaches, numerous barbecues and graduation celebrations are on the horizon. However, the Federal Trade Commission is alerting the public to be vigilant against counterfeit digital invites masquerading as phishing scams that aim to capture personal data.
The FTC has identified that fraudsters are sending unsolicited texts and emails that mimic well-known invitation platforms like Evite and Paperless Post. These messages often seem to originate from familiar contacts, urging recipients to input their email login information or provide a verification code to access event details or RSVP.
“Authentic invitations don’t operate this way,” the FTC emphasized in a consumer warning released this week.
Authorities caution that thieves could exploit stolen login details to hijack email accounts, subsequently dispatching more phishing attempts to the victim’s network.
The FTC notes that these scams frequently commence with an unexpected invitation linked to graduation festivities, summer gatherings, or similar occasions.
How the scam works
According to the FTC, the scam usually starts with an unexpected invitation message tied to graduation parties, summer celebrations or other events.
Some fake invitations direct users to a login page asking for an email username and password, while others request a phone number and a one-time verification code.
The FTC said legitimate invitation platforms generally do not require users to hand over passwords or special access codes to open invitations.
If consumers receive an invitation they were not expecting, the agency recommends contacting the supposed host directly before clicking any links.
How to protect yourself
The FTC recommends several ways consumers can protect themselves from phishing scams:
• Keep computer and phone software updated to help defend against security threats.
• Use two-factor authentication on email and other online accounts.
• Avoid clicking suspicious links or entering login credentials into unfamiliar websites.
• Change passwords immediately if you believe your account information has been compromised.
Consumers can forward phishing emails to reportphishing@apwg.org and forward scam text messages to 7726, which spells SPAM. Phishing attempts can also be reported to the FTC at ReportFraud.ftc.gov.
