Overpayment scam

Last updated March 19, 2024

An overpayment scam, also known as a refund scam, is a type of confidence trick designed to prey upon victims' good faith. In the most basic form, an overpayment scam consists of a scammer claiming, falsely, to have sent a victim an excess amount of money. The scammer then attempts to convince the victim to return the difference between the sent amount and the intended amount. This scam can take a number of forms, including check overpayment scams and online refund scams.

Variants

The scam has many variants, but all of them include some combination of a fraudulent payment from the scammer to the victim and a legitimate payment from the victim to the scammer.

Check overpayment scam

In a check overpayment scam, the scammer will pay the victim for goods or services (often in response to an online or classified advertisement, though there are a number of other premises for check overpayment scams) with a fraudulent check of an amount in excess of the intended amount. In some cases, the scammer will claim that the difference between the intended amount and the amount on the check is due to customs or other import fees, or shipping fees.^[1] The fake check can present either as a personal or cashier's check. The scammer then requests that the victim pay them the excess between the intended amount and the amount on the check.^[2] After the victim does so, they discover that the scammer's check was fraudulent, losing their money. In addition, if the check was sent in response to an online or classified advertisement and the victim has already sent or delivered the item being sold to the scammer, the victim loses their item as well.

The check variant of the overpayment scams, as well as other confidence tricks where scammers send the victim an illegitimate check, work in part because of the delay—sometimes days or weeks—between a customer depositing a check at a bank and the check clearing and being verified as legitimate.^[3]

Online refund scam

In an online refund scam, a scammer usually finds potential victims by cold calling phone numbers until there is a responsive victim. The scammer pretends to represent either a well-known large company or a smaller company offering a service of some kind. The scammer tells the victim that the company owes the victim a refund either for a product that the victim supposedly ordered or a service that the company can no longer provide. In a similar version, a scammer impersonating an e-commerce website such as Amazon or eBay tells the victim someone fraudulently ordered an expensive item using the victim's account and offers the victim a refund for the supposed fraudulent transaction. The scammer will request to access the victim's computer using remote desktop software, and then ask the victim to log in to their online banking website. In some cases, the scammer has the victim fill out an online form with the amount that they are supposedly owed, which they later claim the victim filled out incorrectly. The scammer blanks the victim's screen using the remote access software, and uses the web development tools of the victim's browser to temporarily edit the online banking webpage to show a transfer into the victim's account. While no transfer has actually taken place, when the scammer restores the victim's ability to see the screen, the edited version of the webpage may convince them that the scammer did indeed transfer money into their account.^[4]

After the victim believes that a transfer has gone through, they then discover that the amount supposedly transferred into their account is larger than expected. Using the good faith of the victim against themselves, the scammer often claims that their job is at stake if the victim doesn't return the difference between the intended amount and the supposedly paid out amount. In cases where the scammer told the victim to fill out a form, the scammer will claim the victim is responsible for the error, in order to induce guilt. The scammer may also resort to aggressive tactics such as threatening and intimidation to force their victim into complying with their demands. The return is done by wire transfer, money order, or sometimes by store gift card, which the scammer then redeems, making it near impossible for the victim to retrieve their money after being scammed in this way. Some amount of time later, the victim then finds out (possibly by reloading their online banking website, as reloading the page removes the scammer's changes) that the scammer never transferred any money into their account at all, and that any money sent to the scammer has been lost.^[4]

Online refund scams can also be considered a form of technical support scam, as they largely follow the same format of connecting to the user's computer with remote access software. In addition, some online refund scams have been targeted at users who had previously fallen victim to technical support scams, claiming that the company which originally conned the victim had gone out of business and could no longer provide the "security services" the victim paid for in the original scam.^[5]

Business payment account scam

A scammer offers to buy an item on an online marketplace such as Facebook Marketplace using Venmo or Zelle. The scammer tells the seller (victim) that to complete the transaction, the seller needs to upgrade their account to a business account. The scammer sends the victim a bogus payment notice for the item's price plus what they claim is a business account upgrade fee, then asks the victim to buy the upgrade from someone impersonating the payment processor so that the victim can receive their payment. The victim does not actually receive any payment, but the scammer receives a fraudulent "upgrade" payment from the victim.^[6]^[7]

Related Research Articles

An advance-fee scam is a form of fraud and is one of the most common types of confidence tricks. The scam typically involves promising the victim a significant share of a large sum of money, in return for a small up-front payment, which the fraudster claims will be used to obtain the large sum. If a victim makes the payment, the fraudster either invents a series of further fees for the victim to pay or simply disappears.

Scam baiting is a form of internet vigilantism primarily used towards advance-fee fraud, IRS impersonation scams, technical support scams, pension scams, and consumer financial fraud.

Bank fraud is the use of potentially illegal means to obtain money, assets, or other property owned or held by a financial institution, or to obtain money from depositors by fraudulently posing as a bank or other financial institution. In many instances, bank fraud is a criminal offence.

Internet fraud is a type of cybercrime fraud or deception which makes use of the Internet and could involve hiding of information or providing incorrect information for the purpose of tricking victims out of money, property, and inheritance. Internet fraud is not considered a single, distinctive crime but covers a range of illegal and illicit actions that are committed in cyberspace. It is, however, differentiated from theft since, in this case, the victim voluntarily and knowingly provides the information, money or property to the perpetrator. It is also distinguished by the way it involves temporally and spatially separated offenders.

419eater.com is a scam baiting website which focuses on advance-fee fraud. The name 419 comes from "419 fraud", another name for advance fee fraud, and itself derived from the relevant section of the Nigerian criminal code. The website founder, Michael Berry, goes by the alias Shiver Metimbers. As of 2013, the 419 Eater forum had over 55,000 registered accounts. According to one member, "Every minute the scammer I'm communicating with is spending on me is a minute he is not scamming a real potential victim."

Email fraud is intentional deception for either personal gain or to damage another individual using email as the vehicle. Almost as soon as email became widely used, it began to be used as a means to defraud people, just as telephony and paper mail were used by previous generations.

<span class="mw-page-title-main">Lottery scam</span> Fraud pretending to be a lottery

A lottery scam is a type of advance-fee fraud which begins with an unexpected email notification, phone call, or mailing explaining that "You have won!" a large sum of money in a lottery. The recipient of the message—the target of the scam—is usually told to keep the notice secret, "due to a mix-up in some of the names and numbers," and to contact a "claims agent." After contacting the agent, the target of the scam will be asked to pay "processing fees" or "transfer charges" so that the winnings can be distributed, but will never receive any lottery payment. Many email lottery scams use the names of legitimate lottery organizations or other legitimate corporations/companies, but this does not mean the legitimate organizations are in any way involved with the scams.

A cashier's check is a check guaranteed by a bank, drawn on the bank's own funds and signed by a bank employee. Cashier's checks are treated as guaranteed funds because the bank, rather than the purchaser, is both the drawee and drawer and is responsible for paying the amount. They are commonly required for real estate and brokerage transactions.

<span class="mw-page-title-main">Romance scam</span> Confidence trick using romantic intentions

A romance scam is a confidence trick involving feigning romantic intentions towards a victim, gaining the victim's affection, and then using that goodwill to get the victim to send money to the scammer under false pretenses or to commit fraud against the victim. Fraudulent acts may involve access to the victim's money, bank accounts, credit cards, passports, e-mail accounts, or national identification numbers; or forcing the victims to commit financial fraud on their behalf.

Voice phishing, or vishing, is the use of telephony to conduct phishing attacks.

Telemarketing fraud is fraudulent selling conducted over the telephone. The term is also used for telephone fraud not involving selling.

<span class="mw-page-title-main">Work-at-home scheme</span> Scams focused on businesses run from ones home

A work-at-home scheme is a get-rich-quick scam in which a victim is lured by an offer to be employed at home, very often doing some simple task in a minimal amount of time with a large amount of income that far exceeds the market rate for the type of work. The true purpose of such an offer is for the perpetrator to extort money from the victim, either by charging a fee to join the scheme, or requiring the victim to invest in products whose resale value is misrepresented.

Credit card fraud is an inclusive term for fraud committed using a payment card, such as a credit card or debit card. The purpose may be to obtain goods or services or to make payment to another account, which is controlled by a criminal. The Payment Card Industry Data Security Standard is the data security standard created to help financial institutions process card payments securely and reduce card fraud.

The parcel mule scam, also known as the reshipping scam, involves scammers and unsuspecting victims handling goods to other countries. In some ways it is similar to the money mule scam. Scammers use fake advertising to hire mules. Items are bought with stolen cards, and since the goods are typically re-sold once shipped, this scam can be viewed as an indirect form of money laundering.

A technical support scam, or tech support scam, is a type of scam in which a scammer claims to offer a legitimate technical support service. Victims contact scammers in a variety of ways, often through fake pop-ups resembling error messages or via fake "help lines" advertised on websites owned by the scammers. Technical support scammers use social engineering and a variety of confidence tricks to persuade their victim of the presence of problems on their computer or mobile device, such as a malware infection, when there are no issues with the victim's device. The scammer will then persuade the victim to pay to fix the fictitious "problems" that they claim to have found. Payment is made to the scammer through ways which are hard to trace and have fewer consumer protections in place which could allow the victim to claim their money back, usually through gift cards.

Kitboga is the Internet alias of an American Twitch streamer and YouTuber whose content primarily focuses on scam baiting against phone fraud. His channel has over 1 million followers on Twitch, and his YouTube channel has over 3 million subscribers.

Jim Browning is the Internet alias of a software engineer and YouTuber from Northern Ireland whose content focuses on scam baiting and investigating call centres engaging in fraudulent activities.

An SSA impersonation scam, or SSA scam, is a class of telecommunications fraud and scam which targets citizens of the United States by impersonating personnel of the Social Security Administration. SSA scams are typically initiated by pre-recorded messages, or robocalls, which are designed to panic the victim so that they follow the scammer's instructions. In 2018, over 35,000 incidences of SSA scam robocalls were reported to the Better Business Bureau, and the total losses of victims added up to over $10 million. It is believed that approximately 47% of Americans were subject to an SSA impersonation scam robocall during a three-month period in mid- to late 2020, and that 21% of seniors were targeted by at least three SSA scam robocalls in the same time period.

A package redirection scam is a form of e-commerce fraud, where a malicious actor manipulates a shipping label, to trick the mail carrier into delivering the package to the wrong address. This is usually done through product returns to make the merchant believe that they mishandled the return package, and thus provide a refund without the item being returned. It can also be done by the seller, generally by creating fraudulent online stores or creating fake listings on sites such as eBay or Mercari. This makes it very hard to perform a chargeback, as the tracking shows the item has been delivered. This is also known as an FTID scam, standing for Fake Tracking ID. When this scam is successful, the tracking number will show that the package has been delivered to the correct address, when the package was instead delivered to a different address. This package is generally empty or filled with garbage. However, this scam has mostly been “patched” via new technology provided by the various couriers globally. It is estimated the scam cost retailers £18,000,000,000 in lost revenue.

References

↑ "Selling items online? Learn how to avoid the overpayment scam". cba.ca. Retrieved December 20, 2020.
↑ "Check Overpayment Scams | Don't Cash That Check | Consumer Protection Bureau | NH Department of Justice". www.doj.nh.gov. Retrieved December 20, 2020.
↑ "How to Spot, Avoid and Report Fake Check Scams". Consumer Information. January 29, 2020. Retrieved December 20, 2020.
1 2 Switzer, Eric (July 24, 2019). "Streamer Creates Fake Bank To Troll Online Scammers". TheGamer. Retrieved December 20, 2020.
↑ "Hang up on fake "refund calls"". Consumer Information. August 27, 2020. Retrieved December 21, 2020.
↑ Kurtz, Jackson (January 11, 2023). "KS woman warns of scam on Facebook Marketplace". KMBC. Retrieved January 13, 2023.
↑ Silverman, Sam (December 16, 2022). "I Lost $300 to a Facebook Marketplace Scam, What I Wish I Knew". Entrepreneur. Retrieved January 13, 2013.

This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.

[1] "Selling items online? Learn how to avoid the overpayment scam". cba.ca. Retrieved December 20, 2020.

[2] "Check Overpayment Scams | Don't Cash That Check | Consumer Protection Bureau | NH Department of Justice". www.doj.nh.gov. Retrieved December 20, 2020.

[3] "How to Spot, Avoid and Report Fake Check Scams". Consumer Information. January 29, 2020. Retrieved December 20, 2020.

[:0-4] 1 2 Switzer, Eric (July 24, 2019). "Streamer Creates Fake Bank To Troll Online Scammers". TheGamer. Retrieved December 20, 2020.

[5] "Hang up on fake "refund calls"". Consumer Information. August 27, 2020. Retrieved December 21, 2020.

[kmbc-2023-01-11-6] Kurtz, Jackson (January 11, 2023). "KS woman warns of scam on Facebook Marketplace". KMBC. Retrieved January 13, 2023.

[entrepreneur-2022-12-16-7] Silverman, Sam (December 16, 2022). "I Lost $300 to a Facebook Marketplace Scam, What I Wish I Knew". Entrepreneur. Retrieved January 13, 2013.

[1]

[2]

[3]

[4]

[5]

[6]

[7]

v t e Scams and confidence tricks
Terminology	Scam Error account Shill Shyster Sucker list
Notable scams and confidence tricks	1992 Indian stock market scam 2G spectrum case Advance-fee scam Art student scam Badger game Bait-and-switch Black money scam Blessing scam Bogus escrow Boiler room Bride scam Charity fraud Clip joint Coin-matching game Coin rolling scams Drop swindle Embarrassing cheque Exit scam Extraterrestrial real estate Fiddle game Fine print Foreclosure rescue scheme Foreign exchange fraud Fortune telling fraud Gem scam Get-rich-quick scheme Green goods scam Hustling Indian coal allocation scam IRS impersonation scam Intellectual property scams Kansas City Shuffle Locksmith scam Long firm Miracle cars scam Mismarking Mock auction Moving scam Overpayment scam Patent safe Pig in a poke Pigeon drop Pork barrel Pump and dump Redemption/A4V schemes Reloading scam Return fraud Salting Shell game Sick baby hoax SIM swap scam Slavery reparations scam Spanish Prisoner SSA impersonation scam SSC Scam Strip search phone call scam Swampland in Florida Technical support scam Telemarketing fraud Thai tailor scam Thai zig zag scam Three-card monte Trojan horse White van speaker scam Work-at-home scheme
Internet scams and countermeasures	Avalanche Carding Catfishing Click fraud Clickjacking Cramming Cryptocurrency scams Cybercrime CyberThrill DarkMarket Domain name scams Email authentication Email fraud Internet vigilantism Lenny anti-scam bot Lottery scam PayPai Phishing Referer spoofing Ripoff Report Rock Phish Romance scam Russian Business Network SaferNet Scam baiting 419eater.com Jim Browning Kitboga Scammer Payback ShadowCrew Spoofed URL Spoofing attack Stock Generation Voice phishing Website reputation ratings
Pyramid and Ponzi schemes	Aman Futures Group Bernard Cornfeld Caritas Dona Branca Earl Jones Ezubao Foundation for New Era Philanthropy Franchise fraud High-yield investment program (HYIP) Investors Overseas Service Kapa investment scam Kubus scheme Madoff investment scandal Make Money Fast Matrix scheme MMM Petters Group Worldwide Pyramid schemes in Albania Reed Slatkin Saradha Group financial scandal Secret Sister Scott W. Rothstein Stanford Financial Group Welsh Thrasher faith scam
Lists	Con artists Confidence tricks Criminal enterprises, gangs and syndicates Impostors In the media Film and television Literature Ponzi schemes

v t e Types of fraud
Business-related	Billing Cramming Disability Drug / Pharmaceutical Email Employment Fixing Impersonation Intellectual property Internet Job Long firm Odometer Phone Health care fertility quackery Racketeering Return Tech support Slamming Telemarketing Wine
Family-related	Fertility Marriage Paternity
Financial-related	Advance-fee lottery scam Bank Bankruptcy Chargeback Cheque Credit card and carding Forex Insurance Lottery Mismarking Mortgage Overpayment Securities Shill bidding Tax
Government-related	Benefit Electoral Medicare Visa Welfare
Other types	Affinity Charity Counterfeiting Faked death Forgery Hoax Impersonation Mail and wire honest services Scam Romance Bride Scientific Spyware Vomit White-collar crime
list Category