If there’s one thing scammers are good at, it’s finding you where you least expect them.
This week, they’re knocking on the doors of retirement communities in Florida, sliding into the inboxes of homeowners navigating building permits and hiding behind routine crypto wallet alerts. Three very different entry points — and in each case, the money is already gone by the time victims realize what’s happened.
- Sitting Ducks in the Sunshine State: Criminals are increasingly zeroing in on older Americans living in 55-plus retirement communities by using AI-generated images and cloned voices. The March/April 2026 issue of AARP Bulletin reports that residents of The Villages in Florida, the nation’s largest retirement community, say they were targeted almost immediately after moving in, with one resident describing the experience as feeling like “sitting ducks.” In one case highlighted in the issue, a random text message led to a sophisticated investment scam that wiped out a consumer’s entire savings through fake websites, fabricated account dashboards and rapid currency transfers before the victim had any idea of what was happening. If you or a loved one lives in a retirement community, be especially cautious of any unsolicited financial contact, no matter how polished or personalized it seems.
- Your Permit Fee Is Fake: The FBI is warning the public about an emerging phishing scheme in which criminals impersonate city and county planning and zoning officials to solicit fraudulent payments for permit fees. Victims receive unsolicited emails with accurate details such as their property address and case numbers, which make the messages hard to dismiss. The emails instruct recipients to pay via wire transfer, peer-to-peer payment or cryptocurrency, often threatening delays in the permitting process if payment isn’t made immediately. One tell-tale sign is that the emails direct applicants to request payment instructions via email rather than by phone, ostensibly to maintain an “audit trail” — a tactic designed specifically to prevent victims from calling their city or county office to corroborate the fees. Always verify any payment request by calling the relevant government office directly, using a number found on its official website.
- One Click to an Empty Wallet: Approval-phishing scams are one of the most insidious threats facing crypto investors right now. They often begin with criminals building trust before prompting victims to approve malicious wallet permissions through fake alerts or pop-ups that appear to come from trusted apps or services. Once that approval is granted, the scammer has full control. But law enforcement is now fighting back. The U.S. Secret Service, the UK’s National Crime Agency, the Ontario Provincial Police and several other agencies have launched a joint initiative called Operation Atlantic, aimed at disrupting these schemes in real time and warning potential victims before their wallets are compromised. Remember not to click any unexpected prompt asking you to approve wallet permissions. Instead, contact your wallet provider directly through its official app or website.
Protect your digital life: See Lifelock’s current identity theft plans and get your first year of the standard plan for just $7.99 a month
The most common types of scam you should know
Scammers are constantly upping their game, coming up with new and exciting ways (for them) of fooling their targets. AI-powered scams are one example of this: the technology is being used to reach a larger number of people with increasingly more convincing schemes.
But some tricks never run out of style. Most scams fall into a handful of familiar patterns, and those of yore are still very much a threat today — they’ve just evolved to better fit today’s digital landscape.
- Imposter scams: Scammers often pose as trusted figures like government agencies, banks, employers and even friends or family to pressure victims into sending money or sharing personal information.
- Phishing and spoofing scams: These scams use emails, texts or phone calls that look like they’re from legitimate organizations. The goal is to trick you into clicking a malicious link, downloading malware or handing over sensitive information.
- Online shopping scams: Fraudsters can create fake online stores or listings with hard-to-find items at unusually low prices. After you pay for an article, what you end up getting might be counterfeit — or it may never arrive in the first place.
- Investment scams: This type of scam often arrives with promises of high returns from crypto, forex or other “exclusive” opportunities. Many involve long-term grooming tactics, where victims are encouraged to invest more over time before losing everything.
- Romance scams: Some scammers try to get into your pocket through the heart. They build a relationship with you on dating apps or social media, then convince you to give up money and assets by fabricating emergencies or investment opportunities.
Plans for everyone: Check out Aura’s identify theft options for you and your family, starting at $9 a month when you pay annually
What to do if you’re the target — or victim — of a scam
No one is immune to scams or fraud, but a few consistent habits can reduce their danger and the damage they cause.
For starters, be skeptical of unsolicited messages, especially those creating fear or urgency. This might look like an email from your bank threatening to close an account, a text from an online marketplace saying you’ll lose a discount or a call from the IRS claiming they’ll report you to the authorities unless you “act now.”
Scammers love to use this sort of language because it puts the target on the spot, which expects hope will move you to act.
Suffice it to say, always verify any requests from an organization by cross-checking with its official phone numbers, email or website. And don’t click any links, download attachments or respond to messages you suspect may be fraudulent. A legitimate organization will not pressure you for instant action or secrecy.
Now, if you’ve already sent financial information or money to someone you suspect is a scammer, you’ll need to jump through some hoops. Contact your bank, credit card issuer or payment platform immediately and attempt to stop or reverse transactions. Make sure to change any relevant passwords and enable multi-factor authentication to safeguard your accounts, too.
Reporting a scam might also help protect others. You can file a report with the Federal Trade Commission (FTC) at https://reportfraud.ftc.gov and with local authorities at your nearby police department or sheriff’s office. Identity theft victims should also consider momentarily freezing their credit.
Lastly, review your financial statements and credit reports regularly, keep your software updated and limit how much personal information you share online. Scammers often rely on publicly available details to make their schemes more convincing.
If there’s one thing scammers are good at, it’s finding you where you least expect them.
This week, they’re knocking on the doors of retirement communities in Florida, sliding into the inboxes of homeowners navigating building permits and hiding behind routine crypto wallet alerts. Three very different entry points — and in each case, the money is already gone by the time victims realize what’s happened.
Sitting Ducks in the Sunshine State: Criminals are increasingly zeroing in on older Americans living in 55-plus retirement communities by using AI-generated images and cloned voices. The March/April 2026 issue of AARP Bulletin reports that residents of The Villages in Florida, the nation’s largest retirement community, say they were targeted almost immediately after moving in, with one resident describing the experience as feeling like “sitting ducks.” In one case highlighted in the issue, a random text message led to a sophisticated investment scam that wiped out a consumer’s entire savings through fake websites, fabricated account dashboards and rapid currency transfers before the victim had any idea of what was happening. If you or a loved one lives in a retirement community, be especially cautious of any unsolicited financial contact, no matter how polished or personalized it seems.
Your Permit Fee Is Fake: The FBI is warning the public about an emerging phishing scheme in which criminals impersonate city and county planning and zoning officials to solicit fraudulent payments for permit fees. Victims receive unsolicited emails with accurate details such as their property address and case numbers, which make the messages hard to dismiss. The emails instruct recipients to pay via wire transfer, peer-to-peer payment or cryptocurrency, often threatening delays in the permitting process if payment isn’t made immediately. One tell-tale sign is that the emails direct applicants to request payment instructions via email rather than by phone, ostensibly to maintain an “audit trail” — a tactic designed specifically to prevent victims from calling their city or county office to corroborate the fees. Always verify any payment request by calling the relevant government office directly, using a number found on its official website.
One Click to an Empty Wallet: Approval-phishing scams are one of the most insidious threats facing crypto investors right now. They often begin with criminals building trust before prompting victims to approve malicious wallet permissions through fake alerts or pop-ups that appear to come from trusted apps or services. Once that approval is granted, the scammer has full control. But law enforcement is now fighting back. The U.S. Secret Service, the UK’s National Crime Agency, the Ontario Provincial Police and several other agencies have launched a joint initiative called Operation Atlantic, aimed at disrupting these schemes in real time and warning potential victims before their wallets are compromis
Source:Read More