Online scams have never been more convincing — or more costly. What once arrived as obvious, poorly spelled emails from foreign princes has evolved into something far more sophisticated: AI-generated voices that sound exactly like your grandchild, fake investment platforms that look indistinguishable from the real thing, and text messages that appear to come from your own bank. The tactics have changed dramatically, though the goal is still to defraud you of your wealth.
This guide covers the most prevalent scams today, what makes each one effective, and exactly what you can do to protect yourself.
Why Scams Work — Even on Smart, Careful People
Before diving into specific scam types, it’s worth understanding why intelligent, experienced people fall for them. Scammers are experts at triggering emotional states that bypass rational thinking: fear, urgency, love, grief, and excitement all compromise our ability to pause and evaluate.
A scam that tells you your account has been locked, your grandchild is in trouble, or that you have a limited-time investment opportunity is engineered to make you act before you think. The sophistication of modern technology, including everything from AI voices, fake but highly realistic websites, and spoofed phone numbers, makes that emotional bypassing of your natural suspicion easier than ever before.
The habit to build
That’s why the single most valuable protective habit isn’t a piece of software. It’s the discipline to pause when a scammer or fraudulent message is tugging on your emotions. If a message, call, or offer creates a sudden sense of urgency, that urgency itself is a warning sign worth taking seriously. For a deeper look at why even savvy people get caught out, see our post Why Smart People Are Still at Risk of Fraud.
Eight Warning Signs That Apply to Almost Every Scam
No matter what form a scam takes, most share a recognizable set of tactics. If you encounter any of the following, treat it as a reason to stop and verify before doing anything else:
Artificial urgency. “Act now or lose access.” “This offer expires in one hour.” “Your account will be closed today.” Scammers need you to move fast enough that you stay emotional and your judgment can’t catch up. Again, this is a sign to pause and even bring a friend into the situation for some external clarity.
Unexpected contact. You receive a call, text, or email you didn’t expect — from a bank, a government agency, a delivery service, or a family member in trouble. Legitimate institutions rarely initiate contact this way for sensitive matters. Assume this is a scam, cease contact through that method, and call them back at a verified number, not one you got from the potential scammer.
Requests for unusual payment methods. Gift cards, wire transfers, cryptocurrency, and payment apps like Zelle are all favored by scammers because they’re difficult or impossible to reverse. A legitimate organization will never ask you to pay with a gift card or similarly untraceable payment. This is a sign of a scam.
Pressure to keep it secret. The scammer may say, “Don’t tell anyone about this investment.” “Don’t let your bank talk you out of this transfer.” Any instruction designed to prevent you from getting a second opinion is a serious red flag. Cease all communication and do exactly what the scammer would tell you not to do: talk to your bank or a reliable friend openly about the scammer’s communications.
Requests for personal or account information. Your bank, the IRS, and Social Security Administration will never call you and ask for your account number, PIN, Social Security number, or one-time verification code. Any communications requesting these should always be assumed to be scams.
Reluctance to verify identity. Ask the caller to confirm details you can independently check. Scammers will deflect, make excuses, or become hostile when pressed. Your response should simply be to hang up.
Offers that seem exceptional. Investment returns that far exceed the market, prizes you didn’t enter for, deals that are dramatically below market value. If it seems too good to be true, well, that’s because it isn’t true.
Emotional manipulation. Whether it’s fear of legal action, excitement about a windfall, or concern for a loved one in trouble — if a communication is designed to make you feel something strongly, ask yourself whether that emotion is being deliberately triggered, and take a break from the communication. Legitimate organizations can (and will) wait.
The Most Common Scams Targeting Americans Right Now
Full Review
Phishing: The Scam That Started It All
Phishing remains one of the most common and effective forms of fraud precisely because it keeps evolving. The core tactic of impersonating a trusted organization to steal your information is now used in far more than emails: text messages, phone calls, and even elaborate and complex fake websites that look pixel-perfect.
A phishing message is usually designed to cause fear and alarm in the recipient: your account has been compromised, a suspicious charge has appeared, or your package couldn’t be delivered. It then provides a convenient link to “resolve” the issue — which leads to a login page designed, not to log you in, but to capture your credentials.
The tell is almost always in the link. Hover over it before clicking and look at the actual URL. Legitimate institutions link to their real domains. Scammers use URLs that include a variation of the actual organization’s name, or domains with subtle misspellings. For example, a fraudster creating a copycat Latitude 32 Credit Union site may try to trick you with lat32 .org, lattitude32 .org, latitude-32 .org, and so on. Be careful that the URL you are using is completely correct! Regardless, when in doubt, don’t click on a link provided in any communication; go directly to the institution’s website by typing the address yourself.
Smishing: Phishing by Text Message
Smishing applies the same phishing playbook to SMS, where people tend to be less guarded. A text arriving on your phone feels immediate and personal in a way email doesn’t — which is exactly why it works.
Common formats include fake delivery notifications, account alerts, government notices, and two-factor authentication requests you didn’t initiate. The message is brief, the link looks plausible, and the urgency is built into the communication format. For a full breakdown of how to identify smishing messages with examples, see our guide What Is Smishing? Tips to Defend Against Text-Based Scams.
AI Voice Cloning and the Family Emergency Scam
This is one of the most alarming developments in scam technology in recent years, and it specifically targets older adults with established families and assets.
Using a short clip of someone’s voice — pulled from a social media video, a voicemail greeting, or any other public audio — AI can now generate a convincing real-time imitation of that person speaking. Scammers use this to call parents or grandparents claiming to be a child or grandchild in crisis: a car accident, an arrest, a medical emergency. The voice sounds real. The distress sounds real. The request for instant transfer of your funds to the scammer via some untraceable and unrefundable method, such as wire transfer, Zelle, or gift cards, is that much more emotional and convincing.
A second voice sometimes joins the call, posing as someone in authority: often a lawyer, police officer, or doctor, adding supposed institutional credibility to the emergency. The entire scenario is designed to keep you on the phone, emotionally activated, and moving too quickly to think clearly or to verify by calling the real person who is being imitated.
Two defenses work here. First, hang up and call your family member directly on a number you already have — not one provided by the caller. Try not to rely on Facebook communication; your family member’s account may have been hacked.
Second, establish a private family code word in person, never shared online. If someone claims to be your grandchild but can’t provide the word, you’ll know it’s a scammer.
For more on how AI is being used in scams broadly, see our post What You Need to Know About AI Scams.
Investment and Financial Advisor Impersonation Scams
Scammers targeting financially comfortable individuals increasingly pose as investment advisors, wealth managers, or financial professionals offering exclusive opportunities. These scams are often far more polished and harder to spot than the average phishing attempt. They often arrive with professional-looking websites, fabricated track records, fake regulatory credentials, and persuasive conversations that take place over days or weeks.
Common setups include unsolicited outreach through LinkedIn or email from someone presenting as a financial professional, referrals from friends who are themselves unwitting participants, and high-yield investment platforms that show convincing fake returns before eventually requesting a large withdrawal fee — at which point the platform disappears.
The protections here are straightforward but require discipline. Verify any financial advisor through FINRA’s BrokerCheck before engaging. Be highly skeptical of any investment opportunity that arrived unsolicited or promises returns that significantly exceed market rates. Legitimate advisors are registered, regulated, and verifiable.
Imposter Scams: Government, Bank, and Utility Fraud
Imposter scams involve someone pretending to be a trusted authority — the IRS, Social Security Administration, Medicare, your bank, a utility company, or law enforcement — to create fear and compel action.
The IRS will never call you demanding immediate payment or threatening arrest. Social Security will not suspend your number over the phone. Your bank will never ask you to confirm your PIN or full account number in response to an inbound call. If a caller claims to represent any of these institutions and creates urgency around payment or personal information, hang up and call the institution directly using a number from their official website.
Tax season is a particularly active period for this type of fraud. Our post How to Avoid Tax Fraud and Scams During Tax Season covers the most common IRS impersonation tactics in detail.
Romance Scams
Romance scams often unfold slowly, typically beginning on dating apps or social media with someone who seems attentive, interesting, and genuinely invested in getting to know you. There are exceptions to this general rule, where the fraudster may ask for funds very quickly, but that is easier to detect as a scam. Frequently, the relationship develops over weeks or months, often with daily contact, before the scammer introduces a financial need: a medical emergency, a business crisis, or funds to pay for a flight to come visit you.
If these requests are fulfilled, the next one will likely be larger. Victims often send money multiple times before recognizing what’s happening, partly because of the emotional bond that has been carefully constructed, and partly because each individual request seems reasonable given the relationship context.
The most consistent warning sign is someone who is enthusiastic and supposedly very interested, but is repeatedly unable to meet in person or video call. Fraudsters of this kind are always having imaginary issues such as a camera problem, a scheduling conflict, or a logistical reason why a face-to-face meeting can’t happen. Genuine video calls, not pre-recorded clips, are the most reliable verification tool available; unfortunately, even these are not immune from being faked these days. You can’t be too careful online these days.
Online Shopping Scams
Fake storefronts, fraudulent marketplace listings, and counterfeit product sellers have become increasingly sophisticated. A fake website may look completely professional — with product photography, customer reviews, secure checkout indicators, and realistic return policies — while delivering nothing after payment.
Red flags include prices that are dramatically below retail or similar products, no verifiable physical address or customer service contact, domains that are newly registered or slightly misspelled versions of real brands, and payment methods that don’t offer buyer protection. Shopping from an unfamiliar retailer is a risky thing to do; check to see if they have hundreds of Google or Trustpilot reviews. If not, you should probably steer clear of them. Use a credit card rather than a debit card or payment app wherever possible; credit card purchases offer substantially stronger fraud protection.
What to Do If You Think You’ve Been Targeted
If you receive a communication that feels wrong, trust that instinct. You don’t need to be certain it’s a scam to take protective action.
Do not engage further. Don’t reply, click links, or call numbers provided in the suspicious message. Don’t try to catch the scammer by continuing the conversation.
Verify independently. If the message claims to be from Latitude 32 Credit Union, your utility company, or a government agency, hang up or close the message and call the organization directly using a number from their official website or the back of your card.
Contact Latitude 32 Credit Union immediately if your account may be involved. Our team can review your account for suspicious activity, flag it for monitoring, and advise on next steps. Time matters in many of these cases — the faster we know, the more doors may remain open for remediation.
Report it. The Federal Trade Commission accepts scam reports. Reporting doesn’t guarantee recovery, but it can contribute to investigations that will protect others in the future. The South Carolina Attorney General’s office also accepts consumer fraud complaints. You can also report it to your local police department.
Freeze your credit if personal information was shared. If you provided your Social Security number, date of birth, or account credentials to a scammer, contact all three credit bureaus, Equifax, Experian, and TransUnion, to place a freeze. This prevents new accounts from being opened in your name with legitimate lending organizations.
Building Habits That Protect You Long-Term
The best protection against scams isn’t any single tool or piece of knowledge — it’s a set of consistent habits that make you a harder target.
One of these habits is an openness to discussing problems and opportunities; please don’t hesitate to ask for a second opinion on potential scams or investments from a family member, a trusted friend, or your Latitude 32 Credit Union branch before taking any financial action that feels urgent, risky, or unfamiliar. Scammers depend on isolation. Asking someone you trust is one of the most effective things you can do.
For more resources on protecting yourself online, visit our Fraud Prevention & Cybersecurity Resource Center.