Worldwide, we spend an average of two hours and 23 minutes on social media each day. It’s no wonder scammers prowl there in big numbers. Lottery scams, Ozempic scams, account scams — our feeds get peppered with them. That can lead to headaches in all kinds of forms and sizes from credit and debit card fraud to identity theft and investment fraud. The topic of social media scams is so broad that we cover several specific scams and platforms with their own articles. In this article, we’ll discuss the top scams that you’ll find on social media platforms across the board.

Types of social media scams

Account scams

One of the most basic social media scams start with messages that say “there’s something wrong with your account.” It includes a link you can click to set matters right. Yes, it’s a scam. The link leads to a phishing site that asks for your login info, and a verification PIN if you’re using two-factor authentication. With that info, the scammer can change your password and lock you out of your account. They can use it to commit more fraud in your name or hold it for ransom with no guarantee they’ll give it back if you pay.

How to avoid this type of scam

It might be a scam if:

  • The text or email you got looks and sounds fishy. Maybe the language is off, maybe the logos don’t look right.
  • If the web address in the link looks like it’s altered such as extra letters, misspellings, shortened links that hide the true destination, that’s another sign of a possible scam.
  • Someone claiming to be tech support or a rep asks you to share your secure PIN . That’s always the sign of a scam.

Play it safe this way:

  • Go to your account, log in, set up a new password that’s strong and unique, and turn on two-factor authentication if you don’t have it on already.
  • Report the scam to your social media platform. They have pages dedicated to reporting scams like this.

Ozempic and weight loss scams

Recently, the U.S. Food and Drug Administration (FDA) approved several GLP-1 drugs for weight loss. With that came the spike in demand for Ozempic and weight loss scams as pharmacies scramble to fill thousands of prescriptions for Ozempic and other GLP-1 weight loss drugs each week. Remember, buying Ozempic or similar drugs without a prescription is illegal. That makes selling these drugs on social media like Facebook Marketplace, Craigslist, or other related sites illegal as well. Further, watch out for foreign pharmacies and unfamiliar sites selling drugs unapproved by the FDA. They might be phony as well.

How to avoid this type of scam

It might be a scam if:

  • The so-called drug is listed at an unreasonably low price. As the saying goes, if an offer is too good to be true, it probably is.
  • It asks you to pay for your prescription in an unusual way such as a digital wallet app, bitcoin, prepaid debit cards, or wire funds. Legitimate pharmacies typically ask to be paid via PayPal, Apple Pay, or credit card.
  • It makes misleading claims. If any drug offers rapid weight loss or miracle cures, be on guard. Be aware that counterfeit Ozempic poses significant health risks, including exposure to harmful substances, incorrect dosages, and lack of therapeutic effects.
  • Product details are missing. Scam websites typically lack verifiable product info. Pay attention to and look for product batch numbers, expiration dates, or manufacturer details. Other scam websites fail the eye test with poor design and grammar and spelling issues.

Play it safe this way:

  • Only buy from reputable pharmacies. You can check a pharmacy’s license through this FDA page. If the pharmacy you’re considering isn’t listed, don’t use it. Also make sure it has a phone number and physical address in the U.S..
  • Consider AI-powered scam protection. McAfee Scam Detector uses AI to detect and block dangerous links that scammers drop in text messages. Additionally, McAfee Web Protection detects and blocks links to scam sites that crop up in search and while browsing.

Lottery scams and bogus benefits

Scammers know anyone dreams of hitting it big in the lottery, so they concoct scams around those dreams. Their methods include posts and direct messages about phony relief funds, grants, and giveaways — all run by scammers who want your info. If this sounds familiar, like those old emails about transferring funds for a prince in some faraway nation, it is. Many of these scams simply made the jump from email to social media platforms. Common to these scams is the request that you provide personal information because they need it to determine your “eligibility,” or your bank account routing information so that they can “send you your winnings.” In some cases, they may outright ask you for money, like a processing fee or a payout for taxes on your bogus lottery winnings. In all, these scams take a much more direct approach and ask you for payment or personal financial information right out of the gate. Yet when you think about it, would the federal government reach you on social media to dispense relief funds or a tax refund? Likewise, would a lottery board offer up thousands of dollars in prizes via a direct message? The answer is of course no.

How to avoid this type of scam

It might be a scam if:

  • You’re told you’ve won a lottery or sweepstakes that you never entered.
  • The person or organization contacting you asks for personal and/or financial information.
  • You’re asked to pay up front before you receive your winnings or funds.

Play it safe this way:

  • Never pay a person or organization that reaches you through social media.
  • Report scam accounts. Social media platforms also rely on user reports to crack down on scams.
  • Fraud attempts like these are a crime, and you can report it to your appropriate government agency. In the U.S., that’s the Federal Trade Commission, and you can visit their fraud reporting site at reportfraud.ftc.gov.

More ways to avoid social media scams

Set strong, unique passwords

Strong and unique passwords across all your accounts form your primary line of defense. With all the accounts we own, juggling dozens of strong and unique passwords can feel like a task, thus the temptation to use and re-use simpler passwords. Hackers love this because one password can be the key to several accounts. Consider a password manager that can create and safely store your passwords. Comprehensive security software will include one.

Go private

Social media platforms give you the option of making your profile and posts visible to friends only. Choosing this setting keeps the broader internet from seeing what you’re posting, which protects your privacy. Features like our Social Privacy Manager can make quick work of this on your social media accounts.

Say “no” to strangers bearing friend requests

Be critical of the invitations you receive. They could be a fake account designed to gather information on users for purposes of cybercrime or spreading false information. There are plenty of such accounts, as social media companies detect and remove millions of phony accounts each month.

Realize just how easy it is to cook up a scam

Social media platforms have advertising tools that make it easy to target and reach millions of victims. Similarly, with easy-to-use tools to purchase web addresses, create websites, and AI tools to create images and ad copy, scammers can set a scam in motion quickly. This realization gives you extra reason to look at promos, offers, and similar messages on social media with a critical eye.

Don’t click on any suspicious links in emails or texts

They could link to scam or phishing sites. You can also stay safer with our Web Protection and Scam Detector. They’ll alert you if a link might take you to a sketchy site. It’ll also block those sites if you accidentally tap or click on a bad link.

Use a deepfake detector

More and more scams are powered by malicious AI, like the Taylor Swift cookware scam, and cryptocurrency and finance scams. Our McAfee Deepfake detector checks the audio being played through your browser to determine if the content is AI-generated. You can be assured that McAfee doesn’t store any of this audio or browsing history.