Tag: regulation

Posted on

The trouble with technology

I started talking about the use of ‘deepfakes’ in the use of romance scams over 2 years ago when we started to see evidence of them in fake news videos with celebrities and heads of state. Unfortunately, this is only the beginning of the journey and more sophisticated use of this technology will be on it’s tails as seen in the likes of the acclaimed BBC series, The Capture.  Let’s take a dive into ‘The trouble with Technology’. 

Technology has brought about numerous benefits to society, from improved healthcare to faster communication to increased productivity. However, there are also several challenges associated with technology that we need to be aware of, including:

  1. Dependency: We have become increasingly dependent on technology to perform daily tasks, which can lead to issues if technology fails or is unavailable.
  2. Privacy and security: Technology has made it easier for personal information to be collected and shared, raising concerns about privacy and security. Cybersecurity threats, such as hacking and identity theft, are also becoming more prevalent.
  3. Social isolation: Technology can create a sense of isolation and detachment, particularly in younger generations who spend more time interacting online than in-person.
  4. Addiction: Technology can be addictive, particularly social media and gaming, which can lead to negative impacts on mental health, productivity, and relationships.
  5. Job displacement: Technology is also changing the nature of work, with automation and artificial intelligence replacing many jobs. This can lead to job displacement and require workers to reskill and adapt to new industries.
  6. Environmental impact: Technology can have a significant environmental impact, from the manufacture of devices to the energy required to power them. E-waste disposal is also a growing concern.

To address these challenges, it’s important to use technology responsibly and be mindful of the potential impacts on society and the environment. We need to develop policies and regulations to ensure technology is used in a way that benefits everyone, not just a select few. Ultimately, we need to find a balance between the benefits and challenges of technology to create a more equitable and sustainable future.

So far, regulation and legislation are failing on a grand scale.

So how will new technology benefit scammers in Romance Fraud?

Chat GPT bots will be used by scammers with less skills and for the spamming process until a victim is hooked.
Technology has made it easier for scammers to target and deceive people through online dating platforms and social media. They can create fake profiles, steal identities, and use persuasive tactics to gain trust and extract money or personal information from their victims. In the future, technology may also be used to improve detection and prevention of romance fraud, such as through the use of artificial intelligence and machine learning to identify suspicious activity or patterns. It may also be used to help victims report and recover from fraud. It’s important to be cautious and aware of the potential risks when using online dating and social media to find romantic partners.
As a language model, ChatGPT is designed to help with conversations by generating responses that are relevant, coherent, and appropriate in context. Whether you’re looking to have a casual chat or seeking assistance with a complex topic, ChatGPT can offer insights, information, and guidance to help move the conversation forward. Here are some ways that ChatGPT can help with conversations.

 

Providing information: ChatGPT can help answer questions and provide information on a wide range of topics, including science, history, and current events. Generating ideas: If you’re brainstorming ideas for a project or just looking for some inspiration, ChatGPT can help generate new ideas and perspectives. Offering advice: ChatGPT can offer advice and guidance on personal or professional issues, such as career choices or relationship problems. Providing entertainment: ChatGPT can also be a source of entertainment, telling jokes, sharing stories, or playing games.

Overall, ChatGPT can help make conversations more engaging, informative, and enjoyable, and can be a valuable tool for anyone seeking to improve their communication skills or connect with others.
Unfortunately, scammers can use ChatGPT or any other conversational AI system to talk to victims of romance fraud. Here are some ways scammers may use ChatGPT to perpetrate romance fraud:
  1. Generating personalized messages: ChatGPT can be used to generate personalized messages that can make the victim feel special and targeted. Scammers can use this to create a false sense of connection and build trust with the victim.
  2. Mimicking human-like responses: ChatGPT can generate responses that appear to be human-like, making it difficult for the victim to detect that they are talking to a machine. Scammers can use this to make the victim believe they are talking to a real person.
  3. Exploiting vulnerabilities: Scammers can use ChatGPT to learn about the victim’s interests, hobbies, and preferences and use that information to exploit their vulnerabilities. For example, if the victim expresses loneliness, the scammer may use that information to build a deeper emotional connection and manipulate the victim into sending money.
  4. Increasing efficiency: ChatGPT can be used to automate responses and interact with multiple victims at the same time, making it easier for scammers to perpetrate romance fraud on a large scale.
It’s important to note that while ChatGPT can be used by scammers, it can also be used by law enforcement and anti-fraud organizations to detect and prevent romance fraud. It’s crucial to stay vigilant and aware of the signs of romance fraud to protect yourself from scammers.

And what about deep fakes?

Scammers have used technology in various ways to perpetrate scams through video calls. Here are some examples:

Fake video calls. Scammers can use pre-recorded videos or fake personas to create the illusion of a live video call. They may use sophisticated software to manipulate their appearance or disguise their voice to appear more convincing.

This includes the use of intimate videos in sextortion. Scammers may use pre recorded videos on calls to coerce victims in explicit actions to extort victims by recording explicit footage and threatening to share it publicly unless the victim pays a ransom.

Of course these videos have their limitations, the scammer not being able to react as requested if asked and voiceovers only being successful if the scammer has that part well executed to hide true origins. They are also mostly short and fairly poor quality but as with any technology issues this can be explained away. 

To see an example of a fake video call click here.

How have scammer video calls evolved with the help of technology?
Scammers have evolved their video call tactics with the help of technology to make their scams more convincing and sophisticated. 

 

Deepfake is a method by which artificial intelligence (AI) gathers data to be more educated. In this case, the Al uses its data,  here we will see facial movements, to superimpose a new face onto an existing face and body. The term ‘deepfake’ is a fairly new but the origin of the concept isn’t.

Photoshopped images which have evolved into singing pictures have been circulating for at least 15 years. What makes the new deepfake technology problematic is that this once highly expensive technology is now easily accessible, creating ridiculously sophisticated videos that to the untrained eye will appear seamless. 

Scammers can use deepfake technology to create convincing fake videos that appear to be from someone else. They can use this to impersonate celebrities or public figures, or to create videos of fake customer support agents or government officials or the person they have chosen to scam with.

To see a scammer exploring the deepfake software, click here.

To see scammers using deepfake software in their scamming, click here.

Virtual backgrounds: Scammers can use virtual backgrounds to create a false sense of legitimacy or credibility. They may use backgrounds that look like a legitimate office or government agency to convince the victim that they are speaking with a legitimate representative.

Screen sharing: Scammers can use screen sharing to show the victim fake or manipulated content to further their scam. For example, they may show fake bank statements or other documents to convince the victim to send money or share personal information.

How can you spot a deep fake?
Spotting a deepfake can be challenging, as they can be highly convincing. However, here are some common tell-tale signs that you might be looking at a deepfake:
  1. Stiff or robotic facial movements: Deepfakes can still have difficulties with replicating natural human expressions, movements and eye blinks.
  2. Artificial looking eyes: Sometimes, the eyes in a deepfake video can look unrealistic or glassy.
  3. Inconsistent lighting: Shadows and lighting can appear to change or be inconsistent in deepfake videos.
  4. Audio discrepancies: The audio in a deepfake video may not match the movements of the person’s mouth or may sound artificial.
  5. Blurry or low-resolution areas: Some parts of a deepfake video might be more blurry or lower-resolution than others.
It’s important to note that these signs aren’t foolproof, and some deepfakes can be highly sophisticated. Therefore, it’s important to approach all videos with a critical eye and consider the context and source of the content.
FYI: This blog (minus the parts in Italics and the video links) was created using Chat GPT.
Posted on

So you think you know about Yahoo Boys and Romance Scams? Part 4

Yahoo boys or Gee boys have their hands in with many scams. New ways of making quick money are being tested all the time and once something is found as successful, it will be shared amongst scammers in their world and used by everyone-they are known as ‘updates’.

Here are some of the current, popular scams to look out for:

Sugar Daddy/Mummy(Mommy)/Baby Scams

Social media profiles will be set up for Sugar Scams.

Scammers will use anyone’s pictures for these, they don’t need lots for the long game. They will be surfing for any profile picture on any profile to fit the bill. Some groups do love the beautiful Alexandra Rodriguez who is often used as ‘Mommy Heather’.

These scams work by drawing in people who are financially strapped with the premise of being ‘spoilt’ as a sugar baby. I’ve seen these pages target students too. How do the scammers make money? They tell you there is an attorney fee to set up the agreement. Not only that, they will collect your details of Cash App, PayPal or other ‘to pay the money to’ where they will attempt hacking for other scams. ‘Formats’ (in Part 1) are available to the scammers for these scams.

Grant Scams

Grant scams are ongoing and take advantage of any situation going on in that country, or world at the time. The current pandemic has been a blessing for the scammers in many ways. Bottom line here, no organisation handing out money in grants is going to randomly contact you over social media or ask people to contact others for them.

Always do your own research, do not click the link, message the email or text the number they give you. This holds for any text, email or phone call you receive. These details are pre-planned fake websites or call centres (they will reroute home country numbers which are readily available thanks to new services). You will simply be following their scam process. Always put your own search in and get a number/email independently.

 

 

They are collecting your information for identity theft (Social Security Numbers, National Insurance Numbers, bank details, phone numbers) and in the process getting a fee to set up the grant payments.

Google Voice Scams

Scammers need phone numbers to execute their scams. They need numbers in the countries they want to scam in (or open bank accounts or other in), not phone numbers from Africa. Historically, they will ask victims to send Sim Cards and phones as part of the Romance scam. Pickers will be in place to take shipments before sending them out to Africa, unless of course the story from the scammer has put them there. How else can they get them?

Fortunately for scammers, there are now multiple ways. Electronic numbers can be got online through many apps but only local to your country-step in pickers and other victims, but also through Google Voice. Registered phone numbers are far more valuable to scammers as they will be accepted for opening bank accounts and other benefit system frauds.

One way scammers use Google Voice is to scan the likes of private sellers sites such as Craig’s List and Gumtree. They look for items for sale with a listed phone number, the scammer will text asking if the item is still available. On getting a response, the scammer will say they would like to check ‘you’ are not a scammer and say they have put your number through a checking app to check it’s a legitimate number with no bad debt etc listed against it. An OTP (one time password) will be sent and victim asked to please forward the code or screenshot, to them to verify the information.

What you are actually sending is a password to hand over your number to the scammer on Google Voice. Once in possession of that number, the scammer can use it to open online bank accounts and also access lots of other numbers.

 

This process is used in other scams too. Don’t ever send an OTP to a stranger (or any one you have never met or know in person).

Cash App Scams

Cash App along with Zelle, PayPal, Venmo and others offer immediate transfer of funds to another party.

Private seller scams

Using private sellers lists again, scammers will contact in response to an item they claim to wish to purchase. Once agreement is made, funds need to be exchanged. If cash app hasn’t been used before by the client, they have an upper hand advantage from the start.

Cash app only allows transfers in and out of the account for a limit of sending $250 per 7 days and receiving $1000 per 30 days. Increasing these limits only happens through verification of your identity.

Scammers will claim the account limit needs to be increased (expanded) for the transaction to take place due to limits. They claim this can be done through the app by ‘building’ the limit between buyer and seller. Emails are sent from a fake customer service website to confirm the instructions along with notification messages and alerts.

Emails and notifications are passed backwards and forwards to build trust with the victim.

Note the .ng domain address on the website/email. This is Nigeria.

Here the victim instructed the postmaster not to release the parcel until she gave conformation of the payment being credited to her account. The address the package was to be sent to was in New York. This will have been a picker, hired by the scammers knowingly or unknowingly (employment scams, romance scams, paid mules) to collect the package before passing it on to Nigeria. Unfortunately the post master sent the package before confirmation.

The scam continued:

 

The victim did not send any money or gift cards but a few days later the scammer taunted her by showing the Fedex delivery tracker and a video of the Nigerian holding her ring.  They tried again to get more money saying the ring could be returned if she paid for shipping.

She showed the scammer all the evidence I had found of the fake account and the stolen identity of the elderly lady used in the scam. It’s with the police but unfortunately she is very unlikely to see any of her money or possessions again.

Other Cash App scams 

Cash Flip and  Prize Giveaways are other common Cash App scams.

The businesses do offer this service to customers for promotional purposes on occasion and the scammers are quick to jump on these situations to extort money. More on these two Cash App scams can be found here

Please only ever contact these apps for support through the in app contact system. Too many scammers have very well thought out fake websites and call centres to look like the real thing. 

Puppy/Kitten deposit scams

Many of these scams follow a similar pattern, the subject of the scam will simply change so that they can maximise the opportunities to exploit. Puppies and Kittens create a good opportunity for money making in scams, especially when advertising as a quality breed.

I should say here that scams using Puppies and Kittens for scams are abundant in all countries, carried out by heartless criminals who are out to make fast money without thought to the welfare of the animals. You should always seek advise from a vet for a registered breeder or preferably get a pet from a rescue as there are plenty needing homes.

Here, I am concerned with the type of scam conducted over the internet, where the animals are simply virtual and do not in reality even exist.

Fake websites and social media profiles are used to set up these scams.

One is shown here.

Things might not look wrong on first look, bar a gramma mistake on paperwork’s’.

However, the fact this profile messaged first and just a simple search on the pictures, shows this for what it is.

A key phrase here raises red flags. ‘I’m a good and sincere person.’ are words used in romance scams to build trust.
Always screen shot a few images to run through a reverse search. The results can save you money and heart break.
The reverse image search showed that the image has been taken from the internet. These puppies are not for sale.

As the scam continues, the scammer may even send a video (taken from the internet), then a deposit will be asked for. Using Cash App or other, details will be passed and funds transferred to secure the puppy or kitten. The money is lost and the scammer disappears.

Landlord/Rental deposit scams

Using the same technique above,  the scammers will watch legitimate websites for properties going up for rent.

They create private listings with the pictures but with the monthly rental price at a significantly reduced rate. They will claim that they previously had the property with an agent but the fees were too high so now they are renting privately. The agent is just being slack removing the listing.

Documents can be replicated to share and build trust before asking for the deposit to be paid. The old saying goes here, if it seems too good to be true, it probably is.

The deposit and likely first month payment will be asked for in advance as is common with property rental. Scams like this have been found targeting students in particular who are looking for a good deal on limited money. This money will be lost.

Always use a verified agent or meet the person face to face with full identity when venturing into these transactions.

Employment scams

Scammers will get onto college websites or even websites for single mums and similar. Email extractor tools are used to extract the emails registered on that website. The scammers will then bomb the emails with adverts for part time virtual work and work from home opportunities.

The wage is paid by fraudulent bank transfer or cheque in excess of the agreed wage. The picker will announce the mistake and ask for the extra paid money to be returned via gift card or other.

By the time the ’employee’ realises from the bank that the original transaction was in fact a scam transaction, the picker and the scammer are gone.

This method of extracting money is used across the scamming world including call centre scams, but this type- often technical support scam will gain access to the victims computer through screen share software to make them think the bank transaction of a refund has actually gone through at a higher rate and needs to be returned.

Hacking accounts

Scammers do business, and part of that business is hacking accounts, all types of accounts.

Older Facebook accounts are really popular with scammers because of many reasons. One, they look more authentic than a freshly made account with the joining date being historic on the profile. Two, ready made friends list who may or may not be close to the real owner. Three, these older accounts are mainly created in a country not on the ‘watchlist’ and are much harder to get removed through reporting. These accounts are offered for sale in the groups.

How do they get these?

As said previously, Romance Scams are not always about instant money. Sometimes the scammer is focused on collecting facebook accounts or other information for other scams. Sometimes they will come at a victim from more than one perspective, as different identities, to collect more and different information. When money isn’t asked for the victims tend to trust more but the scammers are just as dangerous. They will be building trust and ‘phishing’ for your details for identity theft and other things to earn them money.

Hackers may create the same narrative with a victim and even send them their own bank details with login (of a fake account) to show their trust and love for a victim (or friend). They might use this as a way to get the victim to send a One Time Password (OTP) alert maybe of a ‘login from another device’ from information such as a phone number or email used to access and sign in to a facebook account or email account. The victim will be told it’s to verify their number or email with the bank. The victim sends it to the scammer and the scammer has the password to verify themselves on the social media account or email etc..

The scammer can then change passwords from inside the account settings and lock the victim out.

If an email has been hacked, the scammer will now phish for other information useful in scams. Some of these scams will be for bigger fraud such as online benefit applications where the scammer has collected the required information for submitting a claim in that persons name with their personal details. You can read more here about this kind of fraud.

Other hacked accounts include Sporty Bet accounts where pre loaded cards are available for using.

There are many more scams that are constantly evolving from ones like these. Please be very aware of any one that contacts you or deals that seem too good to be true. Never click links or give a One Time Password or verification code to anyone you don’t know personally. Never use given phone numbers or web-links to confirm what you are being told, always do a search yourself for these numbers, emails or contact details or access the contact us section within an app.

 

Posted on

So you think you know about Yahoo Boys and Romance Scams? Part 2

Scammers will nearly always come up against a client who has started to mistrust through the process. It’s then time to put more effort to regain trust before the chance to exploit has gone.

In the past, the only options available was some very questionable photoshopping. However, technology advances at speed and for good or bad, these scammers will utilise this to their advantage.

Editing Services.

As the scam progresses, trust issues need to be resolved when doubts arise, especially when money has been asked for. This is where the editing services step in. Some will pay/trade for an experienced editor to do this for them, others will have a go themselves. Results may vary…

The editors not only create fake Id’s and photoshop images with a required note, they also create legal documents, plane tickets, invoices and other things needed to continue the scam and exploit the victim.

Taking it further

Fake websites will also be created where a link can be sent to the victim to back up the story being told, with Linked In profiles to match. Click these links to see what they are like:

Dr Michael Kent

This fake website uses the pictures of Dr Michael Miroshnik, Australian Plastic Surgeon as the CEO of a hospital.

Rolinsons Construction

This fake website used ‘up for rent’ properties found on the web as their contact addresses in both England and Canada.

The phone numbers and emails are attached to the scammers for authenticity. This website is likely shared with Ivory Coast Scammers who have French as their primary language and often claim to be from Quebec.

Wiki pages have been created as well to back up the information wanting to be recognised by the scammers against the real person’s history. The Wiki pages which mimic the real ones in appearance, will have the link sent to the victim who then believes they are looking at a real page.

English speaking ‘clients’ may recognise grammatical and spelling errors but unfortunately scammers target everyone and those with English as a second language or even using translate are unlikely to pick up mistakes.

Fake Video Calls

‘If they won’t video call they are a scammer…’

This is what victims have been told for such a long time and in part, some of this holds true. However, with advances in technology the scammers now have a way to build trust further.

Once upon a time they would hold a phone playing a video of the supposed person (there are usually plenty of snippets available on the person’s social media or better still stories, which then disappear) to the camera on a laptop. It was really poor quality but with an excuse for this being bad internet (including it cutting out after a few seconds) it was sometimes enough to convince the victim that the moving person was really on the other side of that screen. Military scams used this particularly well as victims are being told they in remote areas. Now, apps are available to create ‘prank video calls’ which are relished by the scammers to create a better quality experience.

There are tutorials everywhere (click here for one). Scamming made easier with the help of technology. (Please ignore BJ Campbell’s comment, who is not the person you want to be online dating with as he thinks fake video calls are invaluable).

However, the scammers cannot yet make the video answer questions  you might pose but voice overs are getting better so look out for the lip synching. An advantage for them is that scamming someone with a different language makes this all the easier.

This has become an essential part of the game and tutorials on how to do this is one of the services offered in the groups.

 

Also available are voice changing apps for the scammer to be two people at once or a child. Ivory coast scammers use village children to talk to clients as they already speak French but when convincing a client what a good mum they’ll be or a child asking for help or wanting to come and live with you, for English or other languages, the voice changer works for them. Technology is getting better all the time and depending on the size of the group (and the money to access better technology) the better the quality will be.

Collecting the money

Things will usually start small. Asking for gift cards of various descriptions has become the normal as a tester for the scammers. They then exchange the gift cards for cash with a ‘reputable’ hustler for Naira or other currency.

Amounts asked for may increase along with the story posed by the scammer. The various scams within ‘romance fraud’ have been mentioned in Part 1. (read here if you haven’t).

Now enter… ‘The Loaders and The Pickers

Romance scams, can be stand alone scams however, the victims can also be part of something much bigger.

Yahoo boys do not just ‘dabble’ in extorting money from vulnerable people looking for love.

Business email compromise (BEC).

This is a much larger fraud where scammers are defrauding businesses by setting up bank accounts where money is unknowingly transferred by organisations on request of a fraudster posing as the CEO to these accounts in their control. The starting process for these phishing scams and spamming comes from Russia and Eastern Europe, who sell leads to the Social scammers of West Africa. That scratches the surface, the sums lost are in the billions.

Where do victims of romance fraud come in? These huge scams need to have the money they exploit, cleaned before it is sent back to Africa and the fraudsters. Money mules are used to do this. These mules (Pickers) have several roles.

Some will know exactly what they are doing and paid for the job. They will often be resident citizens in the country being exploited and work for a percentage of the ill gotten gains. These criminals will set up bank accounts, PayPal accounts, any other digital cash transfer accounts using stolen identities (courtesy of other phishing scams including Romance Scams, where they are collecting all and every scrap of your details) and also send cash directly to other mules.

Most of these applications and organisations have criteria to block accounts being opened by the likes of Nigeria or money sent to these countries, so they have become creative in how to get the money back to them. It also means the trail of the stolen money is made ever more difficult to trace, if not impossible. Large sums of money also meet criteria for investigation by the likes of the FBI, the scammers know this, so stolen funds are split into smaller packages, ‘The Loaders’ then load accounts with the funds ready to transfer.

In some cases, several mules will be used to transfer the money from one place to the next. However, every time a mule is used, the scammers lose a cut of the money.

Romance scam victims can be used for free.

Built into those stories created by the scammers will be opportunities where victims are asked to ‘look after some money’. Some victims wont ever be asked for money themselves, just occasionally doing a favour for the guy they fell in love with when he gets stuck while working abroad. These victims become unknowing money mules (Pickers).

 

The Loader and Pickers are used across a wide variety of scams. They will be called on when needed. The Loaders tend to take the biggest cut as their job is most risky.

Many processes are being tested for ‘cashing out‘ . Gift cards remain a favourite because it removes the mules and the scammer gets a bigger cut of the money. Apps such as Cash App are liked for their ability to convert to Bitcoin which becomes untraceable, however with Bitcoin and other digital currency being banned in Nigeria and other West African countries, they are on the look for new processes constantly, so the game is always changing. AliPay is used in China, Zelle within businesses. New apps are out all the time and they will find ways to exploit them. People like this will show the scammers how to use them:

 

In Part 3, what happens when the scammers are caught out.

 

 

 

 

 

 

 

 

 

 

 

 

Posted on

So you think you know about Yahoo Boys and Romance Scams? Part 1

The last few months have been an eye opener.

As I research more on the new scams that are surfacing, I stumbled across some groups on facebook. These groups with variants of the title ‘Yahoo Boys Association’ became the hub points of my disbelief and horror, not only that Facebook are openly allowing these to even exist but the content which showed me the inside life of scammers. These scammers in particular being those from predominately West Africa, home of Yahoo Boys.

The name ‘Yahoo boy’ came from the original 419 email scams that emerged on the inception of this form of communication, Section 419 being the Nigerian cybercrime law which makes internet fraud a criminal offence. Most are not worried about this law however as the police are mainly ‘hustlers’ themselves, so a scammer revealed. Other names are ‘Gee boys’ and ‘Sakawa Boys’ as known in Ghana.

It became more obvious than ever, that whatever size you think this industry might be, you need to think bigger. Much bigger. Then you need to multiply that by 100 or more, that might start to scratch the surface.

From the posts in their groups I’ve researched their ‘offered services’ and scams where advice is sought for getting money from any snippet of information they get their hands on. Some of these will seem obvious however, many will not. I’ve done the research so you don’t have too.

The Smooth Talkers

Most of you will know these. These are the front line scammers that talk directly to the targets. They call you clients. To them, this is business. They will initiate conversation in many ways:

  • Friend requests followed by messaging on any social media (Pinterest, Facebook, Instagram, SnapChat, Tik Tok etc)
  • Direct Messaging on any social media without requests (as above)
  • Dating platforms-paid and free
  • Messaging through ANY chat facilities on ANY online platform including games such as Wordzee, Scrabble, Song pop etc
  • Replying on public posts to comments as way of connecting to something said.

As a scammer’s job it’s known as ‘bombing’. 

Many whose English is poor will use formats, another scammer’s job. These are pre-scripted conversations designed to suit any situation the front man (or group) either chooses to use for bombing (dating, military, oil rig/construction/contractor/civil engineering) or the process they have chosen to use to extort money from the client.

Screen shot taken from a You Tube video, where tutorials on scamming are abundant.

Introductions will be copy and pasted on mass to as many targets as they can keep track of. You’ll notice if ever you happen across one that asking them a question not within the predicted script can prove problematic. Construction, Engineering (marine, oil gas), Oil rig workers, UN workers and the never ending Peace keeping missions in Syria of the military, all have their own formats. There are others but all come attached to a sob story of being orphaned themselves (or far to far away from any estranged family member) widowed/ divorced with a child (or two), wife/husband killed in a car crash ( as might have their parents) or died of cancer (or covid) for example. Of course, this means you will become the only person they can trust and turn to.

The more experienced scammers with a good grasp of English are far more plausible and far more dangerous.

You will inevitably be asked to move with speed, onto Hangouts or What’s app (as the favourites) but don’t think offerings of other chat apps are safe. Many are venturing to use Viber, IMO, Signal, Line, KIK, Telegram, ICQ, Skype chat. The loud message is, if they ask you to leave the platform for another facility, there is an ulterior motive. This is mainly to avoid losing the client when their profiles are deleted but also to avoid detection through app algorithms picking up key words, the client noticing them still online after the professed amazing connection and other women making loving comments on the pictures. They will often say they have deleted the profile because they have met you but in reality they have blocked you.

Depending on the size of the group the scammers are working in (either for cartel/mafia-esque style groups, smaller groups in the village or city, as a friendship group or individuals) will depend on how the scam continues. Some will do most of the process themselves, most will work as a team, allowing whoever does each particular part of the process best to take over when needed. Some groups or individuals will have the required skills to not enlist the help of others (which can cost them or they have to trade for that skill). These services are sold or traded within these groups. When the scammer feels it’s time to test the water (which can be ridiculously quickly or surprisingly lengthy and by this I mean there have been some I know have talked for over 3 years without being asked because the experienced ones will just listen for a hint of a story where money may finally be mentioned or be using them simply for and unknowingly laundering money) the next phase kicks in.

‘Billing’ (the client) the term given to the format speech used to extort the money also comes in many forms, ranging from I Tunes and gift cards of many types-STEAM and Green Dot being the latest trend, to fees of the boarding school for their child, who they have no other choice but to send there as they are in the military etc. This is also a ploy used to launder money, asking if money can be kept safe by ‘the client’ until the fees are due, then asking it to be passed on. Investment formats for billing in a new or expanding business are also used. The scammers will go to great lengths to make this look real (more later in taking it further). For military scams this may be for requesting leave, early withdrawal from the tour, supplies.

Package/consignment scams are very popular where a bogus package is reported as being sent and the client is to pay for any import taxes due on receipt and for shipping in the first place. The package may be reported to be presents for the client or receipt of possessions of the scammer’s fake identity. Plane tickets for the longed for meeting are another way to extort money within the romance scam. You will, prior to this, have been bombarded with attention and affection, even potentially had flowers, pizza sent to you (great for getting your address and building trust).

Again here, the experience of the scammer to read the situation and adapt will be the clients downfall. New hustlers won’t always be so lucky and ask for help in these groups:

Others will offer ‘Yahoo Plus and Yahoo Plus Plus’ services to help them on their way…

Yes you are reading that right. Read more here on ‘Yahoo Plus’ and ‘Yahoo Plus Plus’

In Part 2, 3 and 4, how they strengthen the deception. How they use other information collected through the game to continue to scam and what happens when they are caught out.

 

 

 

Posted on

The Solicitors Regulation Authority (SRA) and the need for reform in today’s society. Is lack of reform enabling abuse?

Strengthening the Solicitors Regulation Authority (SRA) Code of Conduct

19/12/17 by Anna Rowe

Since my Catfishing experience I have been nothing but stunned at the reluctance from those in a position of authority and power to step up to the mark and deal with the individual that abused and exploited us (I am 1 of 11 so far). This relatively unknown behaviour (termed as Catfishing in America) has grown exponentially as technology has made this form of abuse and exploitation as easy as walking into a very over stocked sweet shop.  There is that word again…abuse. Sexual abuse, emotional abuse, psychological abuse, financial abuse, verbal abuse, physical abuse. All of these behaviours are things that good, normal and honest people recognise as very wrong.

So when you discover, or experience, having been abused or exploited by a solicitor ‘the profession that is an integral part of our judicial system’ and still seemingly considered by the public as ‘pillars of the community’ you would expect for their regulators to take them to task to retain trust in the profession. Right?

Wrong.

My own and many other peoples’ experiences have shown, that when we alert the SRA to the misconduct of solicitors, and as their CEO Paul Philip claims “there are fundamentally important standards that the public, and I repeat, the public must demand of practicing solicitors, these standards include honesty, integrity and confidentiality” we are dismissed. Why? 

The research began. The findings were quite frankly, horrifying. Here is a report of some of that research.

The current role of the Solicitors Regulation Authority (SRA) with regards to the standards of governing issues of misconduct and whistleblowing.

There is increasing concern that the current regulation governing solicitors is not fit for purpose and that public confidence in the profession is incredibly low. This is due to the overly high tolerance of misconduct towards clients and non-clients. The current code’s criteria is restricted to cover complaints from consumers/clients and third parties/non-clients who are involved with the solicitor only in a professional capacity. It does not cover complaints from third parties/non-clients outside of professional capacity which would cover standards/conduct in private life.

This is particularly worrying as there have been a number of complaints of sexual abuse and other misconduct which are being either ignored or dismissed by the SRA without any investigation. In stark contrast, the police, teachers and MPs have to comply with standards in public life as well as professional. There is no justification for providing a cloak of ‘secrecy’ to lawyers than for any other profession. Just like doctors, lawyers are held in positions of trust – public interest in transparency is arguably just as critical for lawyers, as it is, for other public servants, such as, police and MPs.

Background:

The SRA are an independent arm of the Law Society and a self-regulated body funded through law firms and individual solicitors. A levy is paid which contributes to a ‘compensation fund’ and the salaries of the regulators. Individuals also pay for their ‘practising certificate’ which is admission to the roll (and obligation to abide by the code and principles). The SRA’s perceived role is to regulate the conduct of solicitors through ‘Principles and Code of Conduct’ by way of ‘risks’. The CEO Paul Philip, claims vehemently that: ‘the public must demand high standards of the lawyers they regulate’, as public trust is paramount to the profession.

Issues have arisen as we ‘the public’ attempt to demand these standards. Initial concerns arose from several personal case studies with similar themes (abuse against women) and the dismissal of us, by the SRA, to regulate this misconduct as it occurred in private life or as non-clients. Research into this regulator then revealed a much wider problem as it appears that despite the smoke screen of a Code of Conduct which visualises expectations of the highest standards, the reality is the exact opposite.

Research Findings:

Despite the ‘Code of Conduct’ and ‘Principles’ showing that a solicitor must ‘act with integrity’ and ‘behave in a way that maintains public trust in you ‘and’ your profession’ the SRA have simply dismissed several very serious cases, that revolve around private life/non-client scenarios. There are likely thousands more, as a request to see their version of FOI has uncovered that out of 11294 reports in 2015/16 alone, opened only 5081 investigations. This resulted in only 377 sanctions by the SRA, of which 236 were merely a letter to remind them of the code requirements. A FOI request was made to ascertain which ‘risks’ formed the 377 sanctions and the nature of the 6213 reports that were not investigated at all. They say the information is not available, however a table in the Annual Review shows the top 10 issues of cases. Only 129 cases from 11294 reports were considered ‘serious enough’ for tribunal (Solicitors Disciplinary Tribunal), and only 75 solicitors were struck off. This again shows the abuse of power and knowledge of the law being used to ‘evade reprimand and consequence’ as most cases put forward are cut and dried where the lawyer cannot wriggle out of it with threat of legal action. Other findings on what the SRA consider minor to serious in the report are frightening. A brief look at the public cases from the SDT shows some astounding cases including a solicitor charged, and in prison for attempted murder (notwithstanding he had mental health issues) but was given indefinite suspension (meaning it could be repealed), not even struck off.

Tolerance levels are too high:

The risk assessment methodology shows that a financial fraud of £5000 or less is considered minor, with a serious financial fraud reaching over 100K (catastrophic £500k+). However, the maximum fine for a solicitor found with their hands in the till is £2000. The minor £5k to that one individual which is considered as ‘minor’ to the SRA could be someones life savings. ANY financial fraud is dishonest and should result in severe reprimand. This is not happening. A similar theme is set for other RISKS within the assessment, including the vulnerability of the individual/s affected. Abuse of a woman is not even classified outside of ‘professional capacity’ in the workplace. A recent article by the Law Society Gazette states that Sexual Harassment is rife in the profession but the tolerance or acceptance and expectation of this happening, or the consequence of for instance ‘reporting this to the SRA’ isn’t happening because of the backlash. Abuse of women is not being addressed internally or externally.

What is a Professional?

As highlighted in a recent the Women’s and Equalities committee meeting regarding ‘Sexism and Sexual Harassment’ (10:15am 6/11/17), Public Servants (and those in positions of public trust) should be setting standards of acceptable behaviour for society.

Professionals have ‘expectations of behaviour’ attached the the title. Keith Bartley, Chief Executive of the General Teaching Council, said:

“It is a well-established principle that individuals have a duty to uphold the reputation of their chosen profession, and this is backed by a substantial body of case law.”

Back in 2009 he stated:

“The GTC had heard only two cases of teachers’ misconduct outside school. In one, a teacher had encouraged unsafe sex on a website, and the other had appeared on a porn programme on TV. Both were reprimanded.”

Other Professions’ Codes of Conduct

The Codes of Conduct from other professions show the expected behaviour and responsibilities that come with holding this status. This includes being aware of your behaviour and conduct as a person in the community. The word propriety is used in the codes: ‘conformity to conventionally accepted standards of behaviour or morals’. With the inclusion of things like appropriate behaviour on Social Media, other professions are up to date with the modern day politics. Only a few months back the SRA announced that:

‘Specifically, we have warned that online comments posted in a personal capacity and which might be deemed offensive or inappropriate could be classed as misconduct if the poster can be identified as a solicitor.’

There are several other profession’s regulators that demand the same standards of their members in a professional and personal/private life capacity: Police, Doctors, Teachers, Surveyors and many more.

Honesty and Integrity are qualities a person ‘has’ not something they ‘do’ merely in their professional capacity.

A legal ‘doctors’ defence service’ website states that:

‘Members of the public expect medical doctors to be honest in both their public and private life. The public still holds doctors in high regard, with the majority of doctors being given due respect for their contributions to the welfare of society.’ The General Medical Council (GMC) – the regulator of doctors – will take action against those doctors who do not conduct themselves with the utmost probity, integrity, and honesty. Doctors who admit or are found guilty of dishonest conduct will almost certainly be found to have committed professional misconduct.

As members of a profession that are administrators of the law, solicitors should in essence be held more accountable for these expected qualities and behaviours yet the SRA as regulators do not seem able to recognise the detrimental effect that their lack of regulation and ‘standards of behaviour’ are having on society and public trust in the profession as a whole. Including the abuse of women.

Lawyers are held ‘in a position of trust’ by the wider public audience, not just consumers, and need to be so for confidence in them as a profession and administrators of justice. The legal profession cannot be seen to operate as an ‘elite club’ with no accountability and beyond public scrutiny. However, this is precisely the view that concern the public (my petition link is here) and the current SRA regime is eroding public confidence and integrity in the system.

The SRA are accountable to Parliament through the Law Society and, in order to ensure greater transparency and restore public confidence, it would be timely for Parliament to review and strengthen the SRA’s role in relation to broadening their functions, so that i) The SRA afford greater protection to the public by ensuring that complaints from third parties are taken seriously and investigated and ii) They revise the Code of Conduct to encompass standards in public life, similar to that of other professions.

Anyone that is interested in viewing the research findings can email me for further information.

Posted on

Regulation and the Dating Industry. What’s out there?

In the rapid growing industry of online dating, concerns should also be growing over the lack of regulation for the entire industry. The worries published about the lack of responsibility taken by the companies in this industry have been inking the press for years yet nothing seems to have been done?

As part of my campaign moving forward, my goal is to get legal regulation (not self regulation) for all current and future dating platforms to truly protect the users. This should include non-UK based companies legally obliged to comply with our laws if operating a service within our country (even if parts of that service are processed outside the UK). What industry specific regulation is there?

First, I needed to work out what regulation if any was actually in place at the moment.

Here is what I found.

There are 3 general cross industry laws that apply to all companies. These are:

These apply to the dating companies too. However, the ODA claim they decided to take a closer look and define these for their industry:

The Online Dating Association is an organisation founded by 13 leading ‘players’ (all voluntary). They claim to want to take responsibility for the ONLINE dating sector to protect consumers. Members that follow their ‘ODA Code’ of Conduct can display the ODA logo on their dating platform.

The ODA states:

The Online Dating Association Code of Practice (“ODA Code”) is binding on members of the Association. It sets out what is expected of members under a series of key headings:

  •   General Rules (unregulated)
  •   Honest and clear communications (Marketing and Advertising)
  •   Protection of the user (software used for money fraud scammers, operating internationally in the main, like Scamalytics)
  •   Delivering to meet user needs (Consumer Rights)
  •   Protecting data and privacy (Data Protection)

‘The feeling within the sector in the last few years was that it was time we took some collective responsibility for our market and our users as well as exercising responsibility as individual service providers.

In summer 2013 a group of dating site providers took and acted on the advice that this is a market where players should not rely solely on the framework of privacy, data and consumer law to protect the market and those in it.

The law and regulations applicable to the sector clearly matter and should be respected. But laws and regulations have to deal with the generality of industries and businesses to which they apply and our statutory regulators are often thinly stretched and not able to do much other than react to consumer harms.

We, like other sectors, saw the need to give regulations “life” and to draw out, highlight and give meaning to those that particularly matter for online daters. The ODA aims to pre-empt and prevent problems by testing members against our Code of Practice before they can come into membership – and afterwards.’

They go on to state that:

‘Our Code of Practice and our advice for the public on the best and safe use of services was published in December 2013. The Code is short, simple and outcomes-based. It focuses on the core issues for users: the clarity and honesty of the services offered, the protection of user’s personal information, the proper operation of services and the advice and help we give users to make dating as enjoyable and safe as possible.’

Isn’t this simply the current ‘must have’ legal regulation across all industries with some ‘advice tips’ thrown in?

Back in 2013 when the ODA was founded it claimed that:

The Code which will help ensure compliance to existing laws and regulations and it will set the bar higher.  It will be anchored in a set of principles, with supporting rules and guidance:

* Being honest and clear in what you offer (Advertising)
* Meeting expectations and deliver what you promise (Consumer)
* Protecting people’s data and their privacy (Data)
* Protecting our users from harm, deception and loss

So here too, the first 3 standards are ‘general industry’ regulations.

But the 4th claims protection from harm, deception and loss. The ODA haven’t replied to my email on which ‘regulation’ this actually is, other than mere advice for dating safely online and what consequences are in place to the members who don’t comply? A news article on How to stay safe when online dating gives 6 key points of how to stay safe but the DateGreat:DateSafe link is broken.

All I can do is find this in their code. The part of the code that details this is here:

Section 3. Protection of the User (these sub clauses are pertinent to fake profiles)

3.4 ODA Members must have policies and arrangements to prevent misuse or inappropriate use of their services.

3.5 ODA Members must ensure all User profiles are checked and that appropriate arrangements exist to detect fraudulent or misleading Profiles and inappropriate content and to remove any such Profiles from the site as soon as possible.

3.6 ODA Members must not themselves create fake Profiles or knowingly allow Users or any other party to create and post fake Profiles. If ODA Members create Profiles for testing or other administrative purposes this should be done in ways that ensure Users are in no doubt over the nature of such Profiles.

I thought I would test out a company affiliated with the ODA and it’s ‘ODA Code’- Match.com

I decided to set up a fak(ish) profile. What hurdles would I come across? What verification was there in place to ensure the information I was giving them was correct? (3.4 & 3.5)

The results. I used a rarely used email of mine from years ago that required no verification. I used the name Lisa, I copied and pasted a photo from the internet and used that as the profile picture. I waited while the 15 minutes passed for the photo to be verified, mean while I ticked the boxes they wanted about my preferences and hair colour and length. Obviously more important than if I was actually real, married or a convicted rapist. Before the photo had even passed the process I was able to browse the online sea of faces. I clicked the email about activating my account and BINGO! complete. It’s that easy. 2 minutes later the email arrived to say the photo had been verified. Fak(ish) profile success (I then suspended the account).

What did Match.com do that followed the rules and ‘high standards’ set out by the ODA? Nothing. In fact recent research revealed that Match.com came joint second for crimes probed by Durham constabulary between 2011 and 2016.

Their response to my query,  regarding these principles is that it isn’t their responsibility because they state in their T&C’s that the user must provide accurate information. They simply store that information correctly and accurately.

Match also featured heavily in the recent Channel 5 documentary ‘Murder on the Internet’ An almost identical response was received by them from Match when questioned.

So, I’m a rapist who wants to groom and abuse women using their Website as my sweetshop. I can fill in anything I like on that profile. NOTHING is checked. What a great way to exploit women. The sad facts are that although this does happen to men too, statistics show that women are exploited at a ratio of approximately 80:20 the police say sexual abuse cases are more 85:15.

Just recently the dating website secondwife.com has been publicised in the Daily Mail  and has made headlines as it blatantly flouts U.K. law promoting bigamy. What is being done to stop this? Nothing. The man who runs the website set this up in Dubai where Sharia Law exists. However, this is being allowed to operate in our country too. Not only does this flout U.K. law but is putting women and girls at risk of abusive and DV relationships and completely undermines the decades of hard work to secure equality for women. This site also claims FULL VERIFICATION -no fake profiles as a feature. HOW exactly?

The police say:

‘Pretty much all other businesses have a regulation / compliance function or some kind of consortium that they have to address if things go wrong. But not the dating sites.

The ODA do encourage good practice and seek to push for good simple alert mechanisms and we are pushing for a cross board date safe kite mark on all sites.

But as you know, the sites operate globally, the rewards are good for the big players and they don’t want to alarm potential customers by swamping the adventure with law enforcement based warnings and jargon.’

Andrew, CE of the ODA did kindly take an hour to chat on the phone with me (after several emails over the months) where I tried to impress the importance of getting better verification in place across the industry. I stressed I realise this is not an overnight issue to be solved and that I wanted knowledge to enable me to put viable suggestions that work for everyone (as they are businesses) to take forward. I came away with the understanding that I would be invited to meet with their members when the occasions occur, but they fell at the first hurdle and no response to my email asking why they didn’t feel it appropriate for the meeting just gone. Mmmmm.

I wonder if the law changed to say that this Industry could be sued for negligence when things go wrong, if a ‘verification process’ would materialise?

Amber Rudd is currently pushing for better security online to help combat  terrorism. Dating websites are a great place to begin the process of radicalisation if the criminals choose to use them on vulnerable people. But why should it stop there? Money fraud aside, women are being exploited by men still in this decade for self gratification and yes the parameters of this exploitation online are vast. Too many of societie’s attitudes are that this behaviour is ok. Why is it ok? It is becoming normalised because the police are choosing not to put forward cases that mean they have to work at it, cases that are not black and white-to keep their stats good. Cases that now involve the use of technology are moving in the right direction with fake profiles and revenge porn and trolling legislation (more still needs to be done as far as the convictions taking place) but the  judicial system is rarely faced with unusual or different cases as the CPS don’t let them, making this appear publicly that this exploitation ok and doable. Moving backwards in equality? Very much.