For most of us, social media is just part of daily life. It's where we reach out and connect with friends, share updates and photos, and even conduct business. But with these benefits come risks and real consequences.
Fake social media accounts can lead unsuspecting users down a rabbit hole toward scams, data theft, cyber-attacks, and more. As savvy as you are, you could still fall victim. Cybercriminals are incredibly smart. They use every social engineering trick in the book to convince you of their legitimacy.
To help you protect yourself, your family, and potentially your business against this threat, we've put together some of the tell-tale signs of a fake account. Be aware, stay sceptical, and always be on the lookout for these giveaways.
What are the risks?
The vast majority of fake social media accounts—whether on Facebook, Instagram, LinkedIn, or TikTok—are created with a malicious purpose.
The scammer might try phishing, where they trick you into providing personal information. They might convince you to hand over data about yourself like your birthday or address. They then use this to steal your identity or commit financial fraud.
In some cases, fake accounts are used to collect information about software or systems for potential cyber-attacks. These threats can lead to significant personal and financial damage.
You receive a notification out of the blue, but you don't recognise the person. Now what?
Follow these steps to weed out scammers and protect your data.
A quick note: This is just a starting point. Some fake profiles can be incredibly sophisticated. They might pass all of the tests below and still be fake.
Double-check friend and connection requests
Never accept a friend request right away. Instead, take a few minutes to review the sender's profile.
Look at mutual friends or connections. If you have no mutual friends, proceed with caution.
If they do have mutual friends, it's not an automatic green light. See if you can find any details or evidence that confirms their identity. See how long they've been friends with your mutual contacts. Do they ever engage in meaningful interactions with one another?
Examine profiles before engaging
Always check the profile of anyone who sends you a direct message or request. Look for inconsistencies in their profile information.
Genuine profiles usually have a well-rounded set of posts, comments, and interactions. They are published naturally over time. Their content is liked and commented on by other users.
In contrast, fake accounts might have incomplete profiles with vague, generic, or strange information. They might upload a stack of photos in one go, for example.
Be wary of suspicious profile pictures
Fake accounts often use provocative images or have no profile picture at all. Authentic profiles typically have everyday images that reflect real life. If the profile picture seems too polished, overly attractive, or just doesn't fit the supposed identity of the person, it might be fake.
Also, using a reverse image search can help you identify if the image is stolen or used by multiple accounts.
Look out for minimal followers and activity
One of the clear signs of a fake account is minimal followers and little to no activity on their feed.
Check the date and frequency of their posts. New accounts with few followers and sparse activity are suspicious. Genuine users typically have a history of posts and interactions that date back months or even years.
Verify their location
Many fake profiles display locations that don't match their claimed identity. Be cautious if a user says they're local but lists an overseas location on their profile. This inconsistency is a red flag.
Scammers might use virtual private networks (VPNs) to mask their true location, but often, their listed location will not align with the persona they are trying to create.
Don't trust high-profile accounts without verification
Although it might seem like a dream come true, your favourite celebrity is probably not trying to contact you on social media.
When it comes to company accounts, on the other hand, fakes can be a little harder to identify. For example, an imposter might use a zero instead of an "o" in the username.
To verify the account, look for the blue verification checkmark. In addition, access the company's social profiles via the links on their website.
Never reply to suspicious messages or requests
Be cautious of any messages asking for personal or work-related information. Scammers use urgent or alarming language to trigger quick responses. Don't get caught up—take a second to think before you act.
Legitimate companies or individuals rarely ask for sensitive information through social media. Instead, they use secure and official channels for communication.
Check ads and links
Double-check the ads you see on social media and avoid clicking on suspicious links. Instead of purchasing through links provided in the ad, try to visit the official website directly.
Scammers create convincing ads that redirect you to fake websites that capture your information.
Moreover, if an offer seems too good to be true, it probably is.
3 tips for staying safe
Protect yourself with these three tips.
1. Educate yourself and others
Learn about the common tactics used by scammers. Share this knowledge with friends and family to keep them safe, too. If you come across a suspicious account, report it to the platform.
Keep as much of your personal information hidden as possible. Avoid sharing details like your address, phone number, or financial information on social media platforms. Adjust your privacy settings to control who can see your posts and personal details.
Keep up to date with the latest security advice from trusted sources like the Australian Cyber Security Centre and Scamwatch. Always report and block suspicious accounts through the platform.
Staying safe on social media requires vigilance and caution. Never rush into a response; take your time and think logically.