2022 Election Scam

Below is another text I received on my phone. Yes, I believe that hackers have my phone number from the Dark Web. How? There are numerous companies that have my contact information and a several of the larger companies had data breaches, such as T-Mobile, CafePress, LinkedIn, Android, Facebook… Those were just in 2021.

+1 (386) 297-5094

Message from Donald Trump Jr. -> I can't lie to you guys. This election is going to be a tough one so it is REALLY important we hear from you. We need you to take the Official 2022 Nationwide Census. Take 2 mins and get it done: https://winitback2022.org/r.wr?id=JW0FCe4l

ReplySTOPToEnd

This is why I believe it is a scam:

  1. The phone number: It a phone number, not a 5 digits text number. It has a +1 in from of the number. And, when I looked up the number it did not return a legitimate organization.
  2. The web site “winitback2022.org” was created on December 23, 2021.
  3. The web site is hosted by GoDaddy. Okay, that makes it appear to be more legitimate. But, the domains registrant’s contact information has been withheld.
  4. The domain was registered by: Domains By Proxy, LLC. If you look them up, you will find they have a very bad rating with the BBB (Better Business Bureau).
  5. Finally, there no Official 2022 Nationwide Census. The only official Census takes place every 10 years; 2000, 2010, 2020, 2030….

Again, don’t click any link in a text message. Don’t reply to a text message.

Next step, I will report it to GoDaddy as abuse.

Parcel Scam Alert

Below is a text I received on Christmas Eve, and it is a scam! Either they were phishing for information or worst:

+1 (402) 378-1378

Parcel Tracking: Hi, your package with tracking number ZZBURAHH is waiting for you to check the shipment address: spreadbrief.com/DemUgCq

It looked like it could have been legit with the a few problems:

  1. I never get text message starting in +1. I believe that to use +1 the message was probably sent from another country.
  2. I never seen a tracking number like “ZZBURAHH”. Personally, to me it sounds like “Brouhaha”
  3. I was only expecting packages from UPS or USPS.

First, I did a web search on the number. The results did not return any legitimate businesses. If a legit company was going to text me, I would expect to find their business on the web searching by their phone number.

Next I used WHOIS to look up the domain and I found problems:

  1. The domain was created the same day the text was sent.
  2. The domain owner was in another country.
  3. Most of the contact information on the domain was redacted for privacy. If you look at a legit company’s domain registration, such as UPS, they provide a mailing address and phone number.

Lastly, I emailed the text to myself and reported it to the domain provider. On WHOIS an email address is provided to report abuse.

Recommendation: Never click on a link you receive in a text or email.