Social media scams: Common types and how to avoid them

What is a social media scam?

A social media scam is a type of fraudulent activity that takes place on platforms like Facebook, Instagram, TikTok, or LinkedIn, where scammers use fake accounts, deceptive messages, or manipulated content to trick users into giving away money, personal information, or login credentials.

These scams often rely on trust rather than technical tricks. Instead of targeting people at random, scammers often tailor their approach based on what you share online, making the scam feel personal, relevant, and believable.

Why do scammers target social media?

Scammers target social media because it gives them easy access to people, data, and tools. These platforms make it simple to reach users quickly, gather personal information, and run scams at scale without much effort or cost.

Social media works so well for scammers because of:

• Low effort. Creating a believable identity takes very little effort. Scammers can create fake profiles in minutes, clone an existing social media profile, or steal an existing account and start contacting people right away. That makes social media far more useful to criminals than older channels where they had to work harder to reach targets.
• Access to personal details. People also leave a trail of useful information behind them. Social profiles often reveal jobs, hobbies, connections, relatives, birthdays, travel, schools, and favorite brands. This seemingly general information creates valuable opportunities for fraud. A scammer can use personally identifiable information (PII) and public content to make a message sound more personal.
• Low cost. Scammers place ads targeted to reach audiences of specific age, interests, location, or with specific past purchases. A scammer does not need a large budget to push fake products, exclusive deals, or easy money schemes to exactly the people most likely to click.
• Speed and scale. Social media encourages quick reactions. People scroll, click, and respond without much thought. That fast pace reduces the chance that people will stop and verify, which makes scams more effective. Plus, a scammer can reach thousands of users quickly without needing email lists or phone numbers.
• Familiarity and trust. A message on social media from a friend, a family member, or a brand feels less risky than a random cold email. That is why social media impersonation scams and other social scams do so well. Scammers know that once they gain trust, people stop asking enough questions and take fewer steps to protect themselves.

Social media scam statistics

The latest social media scams statistics show just how big the problem has become. In 2024, reported internet crime losses went over $16 billion, a noticeable jump from the year before.¹ At the same time, more than $12.5 billion in total fraud losses were reported to the Federal Trade Commission (FTC).²

A large share of these scams starts on social media. Scammers use messages, ads, and posts to reach people directly. In fact, 1 in 4 people who reported losing money to fraud since 2021 said the scam began on social media, with total losses tied to these platforms reaching $2.7 billion.³

Scam attempts are more frequent than many people may realize. On average, people receive around 14 scam messages per day across social media, texts, emails, and calls. Over a year, that number adds up — the average person spends around 114 hours trying to tell which messages are real and which are fake.⁴

Looking specifically at financial impact, some scam types result in much higher losses than others. Financial scams are the most damaging, with losses exceeding $6.5 billion in 2024. That same year, people also lost $672 million to romance scams and $264.2 million to job-related scams.¹

Older adults are especially affected by scams that rely on trust. People aged 60+ reported $329 million in romance fraud losses and $744 million in investment scam losses in 2024. They are also more likely to lose money to lottery scams, impersonation scams, and tech support fraud. Younger adults, on the other hand, are more likely to fall for job scams, online shopping scams, and some investment schemes.⁵

Common types of social media scams

Social media scams come in many forms, but a few common types of online scams keep showing up because they continue to work. 

The top five usually include impersonation, phishing, romance, investment, and job scams. Still, scammers rarely stick to just one approach. What starts as a dating scam can turn into a fake investment pitch, while a job offer can lead to card fraud. 

Below are the most common social media scams and how they work.

Impersonation scams

Impersonation scams on social media sites rely on trust. The scammer pretends to be someone you know or recognize — a friend or family member, a financial institution, a well-known brand, a government office, or a public figure.

These scams often begin with a cloned or stolen social media profile. Scammers set up fake accounts and copy a real name, photo, and bio, then start sending direct messages or commenting on posts. In other cases, the scammer takes over a real account and uses it to contact friends directly.

Impersonation scams create urgency. Scammers may say they’re locked out of their account, in trouble, or need quick help with an emergency. Some impersonate celebrities to promote fake deals or investments. This type of scam works especially well on Facebook and Instagram because those platforms mix personal contacts, private messages, pages, comments, and shopping. The goal is usually to steal money, account access, or sensitive information. 

Phishing scams

Social media phishing scams often look more convincing than traditional email phishing attempts. On a social media platform, phishing may appear as a support warning, a copyright notice, a fake seller message, or a “security check” from a page that looks real.

Among the main types of phishing on social media sites are fake account alerts, fake customer support, fake marketplace verification, QR-code phishing, and direct-message phishing. Scammers send links to a fake site or drop malicious links into comments, DMs, or ads. Sometimes they avoid links at first, then add them later after a longer conversation.

The goal is usually getting access to your account, stealing account information, or collecting financial information through a fake login or payment page. A phishing scam can also lead to malware installation if you download an attachment, app, or file from the wrong source.

Creators, small businesses, and page admins face extra risk because one stolen account can give access to thousands of followers, payment tools, and brand trust.

Romance scams

Romance scams often start with a flattering message and thoughtful questions, which make the conversation feel personal.

These scams rely on emotional manipulation. Scammers often use tactics such as love bombing, fake emergencies, and emotional pressure. The scammer may invent travel trouble, a health crisis, a business problem, or a family emergency. Another common path is the so-called romantic investment angle, where the scammer builds emotional trust first and then pitches a “safe” opportunity to make money.

According to a NordProtect survey of 2,078 Americans, 15% of respondents said they lost money to dating scams, with many reporting losses between $2,001 and $4,000 on average. Younger adults are often targeted, especially men aged 18–45, and 65% of people who used dating apps reported seeing fake accounts.⁶

Never send money to someone you met online and have never met in real life. That one rule shuts down a huge share of romance fraud.

Investment scams 

Investment scams remain some of the most expensive online scams around. The pitch usually sounds irresistible — easy money, low risk, and fast returns. Social media makes these scams easier because flashy success posts, fake testimonials, and targeted ads fit naturally into the feed.

Many scammers target people through finance content, crypto groups, copied influencer pages, or private message outreach. A fake financial advisor may direct the target to a fraudulent website or app that shows fake profits. Once the person tries to withdraw funds, the story changes, and they are met with more fees, more delays, or total silence.

These scams often use social engineering tactics as well as a fake tone of authority or sense of urgency. A celebrity “endorsement,” fake screenshot, or limited-time pitch is meant to lure people into paying before they think.

If an offer promises easy money, guaranteed returns, or pressure to act quickly, it should be treated as fraud until proven otherwise.

Job offer scams

Job scams often appear as messages offering remote work, good pay, flexible hours, and fast hiring. The target may see the ad on a social media platform or receive a direct message.

The scammer usually asks the target to pay for training, use a personal bank account to receive payment, deposit a fake check, or complete small “tasks” that eventually require topping up funds with their own money.

Task-based scams, in particular, have exploded recently. FTC data showed that losses to job scams more than tripled from 2020 to 2023, and reports in the first half of 2024 alone topped roughly 20,000, with losses above $220 million.⁷

A real employer won’t ask you to pay to start work. If the job requires you to send money, use your debit card, or move funds through your bank account, walk away.

Card cracking scams

Card cracking, sometimes called card popping, sells the fantasy of free money. The scammer claims they can turn a small amount into a larger one through a “bank method” or “money flip.” Then they ask for bank access, card details, PINs, or online banking credentials.

The scammer may deposit a fake check, drain the account, or use the victim’s information in a larger fraud scheme. The person is often left with the missing money and, in some cases, the legal problems too.

This scam tends to spread on Instagram, Snapchat, and short-form video platforms where “fast cash” culture already has an audience. It’s especially dangerous for younger users because it wraps fraud in slang, screenshots, and fake testimonials. The scammer wants control of the account or the card, plain and simple.

Influencer scams

Social media influencer scams take advantage of trust in online creators. Scammers may impersonate influencers, pose as brands, or run fake accounts selling products or services.

These scams show up most on Instagram, TikTok, and YouTube-style spaces where image matters. A fake influencer account can push suspicious links, direct followers to other sites, or drive people to fake stores and investment pages. Some scams target creators instead, offering fake sponsorships or fake account help.

AI makes this scam type harder to spot. Surveys suggest many people struggle to identify AI-made content. One 2026 consumer survey found that 57% of respondents could not identify AI-generated photos when tested, even though 66% felt confident beforehand.⁸

Giveaway and lottery scams

A lottery scam or fake giveaway often starts with a message saying you’ve won a prize or been selected for a reward. You won a phone. You got picked for cash. To claim it, you’re asked to pay a fee, verify your account, or click a link, which is where the scam begins.

These scams spread through posts, comments, stories, DMs, and repost chains. The scammer may impersonate a real brand, a real winner, or a copied support page. The design often looks polished enough to pass a quick scroll.

Pro tip: If a fake giveaway gets far enough to expose your card or bank details, NordProtect’s financial account monitoring can help you spot the damage faster. 

Charity scams

Charity scams use emotional stories tied to disasters, emergencies, or viral posts. They often include urgent language and convincing visuals. Social media makes this scam easier to conduct because people share a story fast when it tugs at them emotionally. A scammer can use copied photos, copied logos, and a polished website to make the request seem legitimate.

The objective is to get people to send money, often through methods that are hard to reverse. Some scams also collect financial or personal information through fake donation pages.

Authentication code scams

Authentication code scam messages often appear as routine requests, which is why they catch people off guard. A scammer may ask for a one-time code to verify your identity, confirm a sale, or help fix an account issue. The code arrives on your phone or in your email inbox. You share it, and the scammer uses it to take over your account.

These scams often piggyback on other scams. A fake buyer may ask for a code to “verify” you. A fake support page may ask for a code to “help” fix an account issue. A fake friend may say they sent a code to you by mistake.

The goal is to gain access to your account. Once inside, the scammer can change passwords, message your contacts to run more scams, or access linked payment tools.

Fake advertisements

Fake ads are one of the biggest engines behind online shopping scams on social media. The ads usually promote products with attractive prices and realistic images. After purchase, items may never arrive, or payment details may be stolen.

Shopping fraud remains one of the most common ways people reported losing money to fraud that started on social media. Among older adults, online shopping fraud generated 26,411 loss reports and $49 million in losses in 2024. The average loss per victim was much lower than in romance fraud, but the number of reports was huge.⁵

Be extra wary of ads pushing exclusive deals, huge discounts, or urgent offers. If the website has weak contact details, strange payment options, or copied text, back out.

Quiz scams

Quizzes and personality tests look playful, which is exactly why they keep working. A post asks which character you are, which celebrity matches your style, or what your answers say about your future. Then it asks for profile access, contact details, or answers that overlap with security questions.

Some of these scams collect data directly. Others use links that lead to fake websites or requests that can install malware. Others simply gather personal details that scammers can use later in account recovery fraud. 

In many cases, the scammer is not trying to get money right away. They may first collect information and use it later to access accounts or steal funds, which makes the scam harder to spot.

If a quiz asks for too much information, requests access to your account or profile, or includes overly personal questions, close it.

Tax scams

Tax scams on social media often disguise themselves as legitimate tax updates or notifications. A message or ad may say you are owed a refund, need to fix a filing issue, or qualify for a benefit. The scammer then asks for account information, financial information, or direct payment.

These scams spike around filing season, but social media keeps them alive all year through posts, groups, ads, and direct outreach. The target may be self-employed workers, gig workers, people expecting refunds, or anyone worried about their taxes.

The objective is usually to collect sensitive information, payment, or login details. In some cases, it can lead to tax identity theft, where someone files returns or claims refunds in your name. No legitimate tax authority will solve a serious issue through a random DM or social media post.

If it concerns taxes, go directly to the official website yourself. Never trust a tax claim because you saw it in a feed.

Real-world examples of fraud and scams on social media

Behind every social media scam is a real story. These cases below show how quickly a message or post can turn into lost money or a compromised account.

Zelle payments linked to social media scams restricted by Chase

In 2025, JPMorgan Chase limited certain Zelle payments after finding that nearly 50% of Zelle scams were linked to social media contact.⁹ Scammers used posts, ads, and messages to lure users into sending money through peer-to-peer apps. Once sent, payments were difficult to recover. The bank responded by blocking or delaying suspicious transactions tied to social media activity.

€830,000 lost in celebrity impersonation romance scam

A French woman lost €830,000 after scammers impersonated Brad Pitt using fake social media profiles.¹⁰ The scam began with messages and moved to private chats, where the victim was convinced she was in a real relationship. The scammer used emotional pressure and fake medical stories to request money over time. The loss was both financial and emotional.

Instagram phishing campaign targets business accounts

In 2025, the Cofense Phishing Defense Center (PDC) identified a scam campaign targeting Instagram business users by posing as Meta support.¹¹ Victims received urgent emails claiming their ads were suspended due to policy violations, pushing them to click a link. The link led to a scam website that mimicked Meta Business tools, where users were guided through “account recovery” steps. In reality, this gave scammers access to their accounts, leading to takeovers, lost ad revenue, and disrupted business operations.

What are the warning signs of social media scams? 

Knowing these red flags may help you find out if you are chatting with a scammer early and protect yourself:

• Unsolicited friend requests. Be wary of new requests from accounts with a thin history, copied photos, or very few real posts.
• Requests to accept friend requests from a second account. A duplicated social media profile often points to a fake or cloned account.
• Urgent pressure. If someone demands quick action, quick payment, or quick login help, slow down.
• Too-good-to-be-true offers. Easy money, huge returns, attractive deals, and miracle discounts happen very rarely in real life.
• Requests for personal or financial information. No random person online should need your bank account, social security number, debit card details, or account information.
• Suspicious links. Strange links, shortened links, and links to a fake website should never get an automatic click.
• Poor grammar or spelling errors. These mistakes used to be an obvious giveaway, but scammers now write more convincing messages, especially with the help of AI. However, small mistakes can slip through, so watch for awkward phrasing or inconsistent wording.
• Requests to send money. If someone you just met online wants you to send them cash, that is one of the largest red flags there is.
• Stories that lean on panic or pity. A friend, family member, or stranger who needs urgent help may be fake until you verify them in another way.

Pro tip: If a scam turns into identity theft or account takeover, NordProtect’s identity theft recovery can make the cleanup process far less painful.

How to prevent social media scams

Scammers count on people making decisions without thinking and double-checking, which is why basic precautions go a long way. To avoid scams on social media, focus on good online security habits and practice caution:

• Review your privacy settings. Protect your personal information and limit what people outside your network can see on your profile (posts, contact info, friends list).
• Use strong, unique passwords. A strong password is long (at least 12–16 characters) and combines letters, numbers, and symbols. Avoid reusing it across accounts and use a password manager if needed.
• Turn on extra login verification. With 2FA or MFA enabled, signing in requires a second check (like a code from an app or SMS), so even if someone gets your password, they still can’t log in easily.
• Never share login or reset codes. Treat them like passwords.
• Be careful with links. Instead of clicking links in messages or posts, open the official website or app yourself.
• Don’t send money to people you only know online. Doing so helps avoid common scams like fake romance or emergency requests.
• Double-check profiles and websites. Look for signs like a real post history, consistent details, and secure payment options.
• Use safer payment methods. Avoid wire transfers or crypto payments when making purchases from someone you don’t know.
• Report suspicious content, ads, and accounts. Use the platform’s report option on posts, ads, or profiles. You can also report scams to the FTC at “reportfraud.ftc.gov” or to the FBI’s IC3 at “ic3.gov.”
• Use extra protection. An identity protection service, like NordProtect, can monitor for misuse of your data and help with recovery if something goes wrong. NordProtect offers scam protection features aimed to protect your personal information, plus financial account monitoring and online fraud coverage in eligible cases. 

Don't be an easy target

Tax season deal: Up to 78% off identity theft protection

30-day money-back guarantee

View promotion details.

References

1. FBI Internet Crime Complaint Center (IC3). 2024 Internet Crime Report. Available at:https://www.ic3.gov/AnnualReport/Reports/2024_IC3Report.pdf
2. Federal Trade Commission. Consumer Sentinel Network. Available at:https://www.ftc.gov/system/files/ftc_gov/pdf/csn-annual-data-book-2024.pdf 
3. Federal Trade Commission. Social media: A golden goose for scammers. Available at:https://www.ftc.gov/news-events/data-visualizations/data-spotlight/2023/10/social-media-golden-goose-scammers
4. McAfee. The Scamiverse Report. Available at:https://www.mcafee.com/consumer/en-us/lp/scamiverse.html 
5. Federal Trade Commission. Protecting Older Consumers 2024–2025. Available at:https://www.ftc.gov/system/files/ftc_gov/pdf/P144400-OlderAdultsReportDec2025.pdf
6. Šlekytė, I. NordProtect survey reveals: Americans feel shame over falling for romance scams. Available at: https://nordprotect.com/blog/romance-scam-survey/
7. Federal Trade Commission. Paying To Get Paid: Gamified Job Scams Drive Record Losses. Available at: https://www.ftc.gov/system/files/ftc_gov/pdf/task-scams-spotlight-2024.pdf
8. Gordreau, J. Think You Can Spot AI Photos? Think Again—And Why It Matters for Brands. Available at: https://clutch.co/resources/ai-photos-brand-usage-consumer-trust
9. JPMorgan Chase. Social media scams and Zelle payment risks. Available at: https://www.chase.com/digital/resources/privacy-security/security/social-media-scams 
10. The Guardian. French TV show pulled after ridicule of woman who fell for AI Brad Pitt scam. Available at: https://www.theguardian.com/world/2025/jan/14/french-tv-show-pulled-ridicule-woman-fell-ai-brad-pitt 
11. Cofense. Clickbait to catastrophe: How a fake Meta email leads to password plunder. Available at: https://cofense.com/blog/clickbait-to-catastrophe-how-a-fake-meta-email-leads-to-password-plunder