"Thank you for your payment" scams
Phishing for your information from your inbox
March 31, 2022
We’ve all heard the term Phishing before. Phishing typically occurs in an email or text where a scammer
tries to get you to give them your information. They may ask you to click a link that seems legitimate
and enter account information. Sometimes the page contains other security risks. However, now, we’re
seeing scammers with a new type of phishing: the “Thank You for Your Payment” Scam.
Here’s how it works:
Digital banking users at any financial institution may be contacted by these social engineers via email
or text with a fake page that thanks the user for their “recent purchase.” This can be rather alarming
if you didn’t order something. In the email, it lists a phone number to call “if there has been a
mistake” with the transaction. Of course, when you call that number, the scammers are waiting on the
other end to “investigate the transaction” and will ask you for digital banking login information to
verify your account or assist you in the matter. They also may ask you for your debit card number to
verify your account. This gives them access to your digital banking or debit card where they can get in
and transfer funds out of your account into their own pockets.
Many of these emails appear to be from big name security companies like Norton™, Lifelock™, Microsoft,
and McAfee®. They often state that a charge of a several hundred dollars was made for some
type of security product like antivirus software or malware protection. It will list a phone number in
the email. These emails change all the time, so the key is to be aware. Here’s an example of a scam
email you may receive below.
They want you to give your digital banking access or debit card information to them when you call. They
may even try to get you to install a remote access or tech support type of app on your PC so they can
“help you remove the software” that was purchased by mistake, otherwise they cannot authorize the
refund. At this point, they may be installing malware on your computer.
How can you avoid these situations?
Never call a phone number listed in an email that states you owe money. Instead, go to your financial
institution website, or the website of the recognized company the email is claiming to be from, and look
up the official, published number and call directly. No legitimate company will ask you for remote
access to your PC to get a refund. That’s a huge red flag. At that point, you can safely assume it’s a
Here are some other red flags:
- Emails that urgently request personal or payment information
- Non-personalized emails
- Links to the wrong sites – the link text may say one thing but direct you to a different area
- Be sure you’re on a secure site, one that begins with https:// not just http://
- Check your transactions in your digital banking app
- If you’re dating online, watch for those who ask for money (for more information on this topic, read
our blog about Sweetheart Scams)
- Never give out your debit card, account, or personal information to those you do not know or are
For more information, check out security tips from the FTC which can be found here.