Thieves and scammers may attempt to steal your private information in various ways, the main ones being via email (Phishing), phone calls (Vishing), and SMS (Smishing). They often disguise themselves as trustworthy senders to deceive people into clicking a link, calling a phone number, or downloading malicious software. Be careful when you're asked to provide account details, download a file, or click unfamiliar links.
If you think you received a suspicious contact, it is very important that you:
- Do not click any links
- Do not download any attachments
- Do not reply
- Do not call or text any phone numbers mentioned
- Forward any suspicious email to phishing@xoom.com
- Send a screenshot of the suspicious SMS/Phone call received to spam@xoom.com
Some common frauds to look out for include:
- Spoof websites – The email contains links to “spoof” sites that attempt to extract information from you. Hover over suspicious links to check the URL before clicking. If the address looks strange, do not follow the link. If you suspect you’re on a spoof website, do not provide any information and leave immediately.
- Unknown attachments – The scammer may say that invoices or other documents are attached to the email. Those attachments may be malicious software or viruses. Take extreme caution if you didn’t request or expect an email with such attachments.
- Suspended account – The email attempts to convince people that their account is being suspended, and then request their password to resolve the issue. Remember: other than logging into your account at the Xoom log-in screen, we’ll never ask for your password.
- Strange greetings – Be wary of emails that start with “Dear user,” “Dear Xoom user,” or “Dear [your email address]”. Scammers may even be able to find out and use your first name, so we recommend still checking for any potential warning signs that an email may be fraudulent.