|
By District Attorney Summer Stephan
Every day, cybercriminals use increasingly sophisticated tools to trick people into clicking on harmful links sent by email. Even businesses and government agencies with strong security systems are vulnerable if a single employee unknowingly releases a dangerous message. Here is how easily a moment of trust can lead to serious consequences. In a recent San Diego case where an organization’s security system correctly flagged and quarantined a phishing email, the email user manually released the bad email because they believed they recognized the sender. This first step put the organization’s information one step closer to being seized. After opening an encrypted attachment using the password provided in the email, the user clicked a link that prompted them to enter their Microsoft Office 365 login. That login information was captured by a criminal using an AIpowered phishing tool called EvilTokens. Within minutes, the bad actor used the stolen credentials to send mass emails to the victim’s contacts and beyond. Incidents like this can happen to anyone. That’s why awareness and prevention are your strongest lines of defense. Red flags include: • An email that has been automatically quarantined or flagged by your security software • A message claiming to be from someone you know but with unusual language or tone • Encrypted or passwordprotected attachments you were not expecting • Urgent instructions to click a link or open a document • Requests to log in to your account through a link in the email • Slight misspellings in email addresses or linksPossible consequences include: • Theft of your login credentials • Criminals gaining access to your email, files, and cloud accounts • Mass phishing emails sent from your account, harming your reputation and exposing others • Data loss or exposure of sensitive personal or work information • Financial loss if attackers gain access to accounts or trick others using your identity • Disruption to workplace systems or broader network compromiseWhat to do if you receive a suspicious email: • Do not open attachments or click links you were not expecting. • Do not remove an email from quarantine unless you are absolutely certain it is safe. • Independently verify the sender by contacting them through a known, trusted method. • Report the email to your IT or security department immediately. • If you clicked a link or entered your credentials, contact your IT department right away so they can reset your password, secure your account, and prevent further damage. • Trust your instincts. When something feels off, it probably is.Cybercriminals rely on our trust and urgency to bypass the protections that keep us safe. A few moments of caution can prevent significant harm to you and your organization. Staying vigilant helps protect not just your own information, but our entire community. The San Diego County District Attorney’s Office is committed to keeping our communities informed and protected as criminals evolve their tactics. By staying alert and spreading awareness, we can stop these scams and keep families safe. To learn more about our Consumer Protection Unit, visit our consumer protection page at www.sandiegoda.com. By District Attorney Summer Stephan
Spring is a popular time for homeowners to start tackling repairs, yard updates, and homeimprovement projects. Unfortunately, it’s also when fraudulent contractors and scammers increase their efforts to take advantage of residents, especially seniors, who may be eager to fix a roof leak, paint a home, or upgrade landscaping before summer. These scams take many forms. Some involve “travelling contractors” who show up at your door offering a great deal for work they claim to have leftover materials for. Others operate through online ads and social media, offering steep discounts or pressuring you to pay upfront. Once they receive a deposit, they disappear or do substandard work that leaves homeowners worse off and out thousands of dollars. Our Consumer Protection Unit sees a spike in these cases every spring with problem areas consistently with home additions, swimming pools and solar panels. The good news is that by knowing the warning signs and your rights, you can significantly reduce your risk. Common red flags of home-improvement scams include: • A contractor shows up unsolicited, claiming they are “in the neighborhood” with extra materials. • You are pressured to make a quick decision or told the deal is only good “today.” • The contractor asks for large upfront payments or full payment before work begins. • Requests to pay in cash, gift cards, wire transfer, or peertopeer payment apps. • The contractor cannot provide a license number or gives one that doesn’t match their name. • No written contract is provided, or the contract is vague about the scope of work. • The contractor refuses to provide references or becomes defensive when asked for them.In California, contractors performing work valued at $1,000 or more must be licensed by the Contractors State License Board (CSLB). Licensing protects homeowners by requiring background checks, bonding, and accountability if something goes wrong. How to protect yourself this spring: • Always verify a contractor’s license through the CSLB website. • Get at least three bids from reputable contractors before deciding. • Read and understand the entire contract before signing and never sign a blank or incomplete document. • Never pay more than the legally allowed 10 percent down payment (or $1,000, whichever is less) for a home-improvement contract. • Avoid cash payments and keep copies of all receipts and agreements. • Check reviews and ask for references from recent jobs. • Trust your instincts—if something feels off, walk away.What to do if you are scammed: Stop all communication with the fraudulent contractor and document everything. • File a complaint with the Contractors State License Board. • Report the fraud to your local law enforcement agency or the District Attorney’s Consumer Protection Unit. • Contact your bank or credit card company if you paid electronically to see whether a chargeback or dispute is possible. • Save all photos, contracts, receipts, and screenshots of online ads or messages. Warn neighbors—many travelling contractor scams target entire neighborhoods.Spring home projects should improve your home, not create financial harm. By staying alert and working only with reputable, licensed professionals, you can protect your investment and avoid becoming a victim. If you believe you’ve encountered a fraudulent contractor or have been the victim of a homeimprovement scam, contact the San Diego County District Attorney’s Consumer Protection Unit at 6195313507 or report a bad contractors to CLSB. |
news Categories
All
RECENT NEWS
May 2026
|
RSS Feed
|
3605 Ocean Ranch Blvd., Suite 205 | Oceanside, CA 92056
760-722-1534 | [email protected] Copyright © 2025 Oceanside Chamber of Commerce Privacy Policy | Map/Directions |
|
