Anthropic just released Claude Fable 5, calling it the most powerful AI model it has ever made widely available and praising its skills in biology, among others. But the model won’t answer basic biology questions — the kind you’d expect a high schooler to handle. Instead, it hands off the query to the former flagship model, Claude Opus 4.8.
Technology
Check washing crisis fueled by AI and mail theft
Once considered an old-fashioned crime, check washing has roared back to life with alarming sophistication.
Criminals are not just targeting personal checks anymore. They are exploiting every vulnerability in the mailing and banking system to cash in on stolen funds.
As check fraud incidents continue to rise sharply across the country, it is more important than ever to understand how check washing works and what you can do to protect yourself. Here is what you need to know to stay ahead of the scammers.
JOIN THE FREE CYBERGUY REPORT: GET MY EXPERT TECH TIPS, CRITICAL SECURITY ALERTS, AND EXCLUSIVE DEALS — PLUS INSTANT ACCESS TO MY FREE ULTIMATE SCAM SURVIVAL GUIDE WHEN YOU SIGN UP!
A pen placed on top of a blank check (Kurt “CyberGuy” Knutsson)
What is check washing fraud?
Check washing fraud happens when a scammer steals a check you have written, erases the ink using chemicals like acetone or nail polish remover, and rewrites it to a new recipient. Often, they will change the amount to something much higher. The altered check is then deposited or cashed, and the funds are drained from your account before you even realize something is wrong.
Why it’s dangerous:
- Check washing does not require much technical skill.
- It can happen with checks you leave in your outgoing mail.
- Even mailed bill payments are vulnerable if not handled securely.
FBI WARNS OF SCAM TARGETING VICTIMS WITH FAKE HOSPITALS AND POLICE
Unlike digital fraud, check washing often goes unnoticed until long after the damage is done. Because checks can take days or even weeks to clear through the banking system, criminals have plenty of time to deposit altered checks and move funds before victims realize anything is wrong.
By the time the missing money is discovered, tracing it back to the scammer can be extremely difficult. This delay makes it critical to monitor your accounts closely and act quickly if you spot any suspicious activity.
Illustration of check fraud in progress (Kurt “CyberGuy” Knutsson)
FBI WARNS OF SCAM TARGETING VICTIMS WITH FAKE HOSPITALS AND POLICE
How check washing has gotten worse
Since 2023, check fraud has exploded in the United States.
The surge in fraud reports reflects more than just isolated criminal acts. Organized crime rings are increasingly turning to check washing as a hybrid crime, blending old-school mail theft with new digital tools like AI. Fraudsters now use advanced technologies to forge identities, alter check images and exploit gaps in banking security, making check washing more sophisticated than ever. As financial institutions strengthen cybersecurity defenses, scammers are targeting physical mail systems as a weaker link to bypass digital barriers.
Real examples:
- Six people were charged with attempting to steal $80 million through fraudulent checks tied to COVID-19 relief funds.
- In Florida, a former mail carrier pleaded guilty to attempting to sell USPS arrow keys and stolen checks totaling nearly $550,000 to an undercover agent, leading to his arrest and confession.
s
New tricks criminals are using
Fraudsters have adapted their methods to stay ahead of law enforcement and banks.
- Mobile deposit fraud: Criminals alter check images or deposit the same check into multiple accounts.
- Synthetic identity fraud: Scammers create fake identities using AI-generated documents to open accounts and cash stolen checks.
- Business Email Compromise (BEC): Attackers impersonate executives or vendors to convince companies to send checks to fraudulent accounts.
Criminals are combining old techniques like mail theft with new digital strategies, making check washing harder to recognize and prevent without proactive security measures. Recent advancements in AI technology have made it easier for scammers to forge realistic-looking documents, generate convincing fake identities and create sophisticated phishing emails.
AI-generated fake IDs and altered check images can pass basic verification checks that would have caught manual forgeries in the past. This shift means check fraud is no longer just a matter of stealing a physical check, but exploiting digital vulnerabilities at every stage of the banking process.
A person going over a bank statement (Kurt “CyberGuy” Knutsson)
THIS IS WHAT YOU ARE DOING WRONG WHEN SCAMMERS CALL
How to protect yourself from check washing fraud
Here are 14 essential protective measures to shield yourself from check washing scams.
1. Use a black gel pen: When writing checks, always use a black gel pen. The ink is much harder to remove compared to regular ballpoint pen ink.
2. Bring checks directly to the post office when mailing them: If using a mailbox, make sure to drop off your mail before the final scheduled pickup so it is not left sitting overnight.
3. Sign up for USPS Informed Delivery: Stay ahead by signing up for USPS Informed Delivery. You will receive digital previews of incoming mail so you can monitor for any missing items early. Learn more about why it’s important here.
4. Monitor your bank accounts: Set up real-time alerts for check clearing and review your statements weekly to catch any suspicious activity. Also, ask your bank about any other fraud-prevention tools they offer to protect your accounts.
5. Switch to digital payments when possible: Use your bank’s mobile app to deposit checks without mailing or physically delivering them, reducing the risk of theft or tampering.
6. Use checks with built-in security features: Choose checks printed on paper with watermarks, chemical-sensitive coatings or other security features that make check washing much harder.
7. Limit the information on checks: Avoid unnecessary personal details. Do not print your Social Security number, driver’s license number or phone number on your checks. The less information available, the less a fraudster can use.
HOW CYBERSCAMS ARE DRAINING AMERICANS WALLETS BY THE BILLIONS
8. Store checks securely: Keep blank checks in a safe place. Store your checkbook in a locked drawer or safe, not in your purse, car or an easily accessible location at home.
9. Check your mailbox security: Install a locking mailbox. If possible, use a mailbox with a lock to prevent thieves from stealing outgoing or incoming mail.
10. Be cautious with endorsements: When endorsing checks, write “For Deposit Only” along with your account number to prevent others from cashing the check.
11. Enroll in identity theft protection with check fraud specialization: Choose services that specifically monitor for compromised check details on dark web marketplaces and alert you to suspicious check-cashing patterns. Identity theft protection services monitor your personal data across the dark web and public databases, alert you to suspicious activity and assist you in locking down your accounts if needed. See my tips and best picks on how to protect yourself from identity theft.
12. Invest in personal data removal services: Minimize exposure of sensitive details (like addresses or banking affiliations) that fraudsters could exploit for check-washing scams. Removing your personal information from these sites can help reduce your risk of becoming a victim. While no service can guarantee the complete removal of your data from the internet, a data removal service is really a smart choice. They aren’t cheap and neither is your privacy.
These services do all the work for you by actively monitoring and systematically erasing your personal information from hundreds of websites. It’s what gives me peace of mind and has proven to be the most effective way to erase your personal data from the internet. By limiting the information available, you reduce the risk of scammers cross-referencing data from breaches with information they might find on the dark web, making it harder for them to target you. Check out my top picks for data removal services here.
13. Shred sensitive documents: Shred old checks and bank statements. Don’t just throw them away. Shred any documents with sensitive banking information.
14. Report suspicious activity immediately: If you suspect check fraud or missing mail, report it to your bank and the U.S. Postal Inspection Service right away.
15. Use Positive Pay if you are a business: Positive Pay is a fraud prevention service offered by most banks to business customers. It works by matching the checks you issue with the ones presented for payment. If something doesn’t add up, like a changed amount or payee, the bank flags it for your review before it’s processed. You usually need to sign up through your bank, and there might be a fee, but it’s a smart way to protect your business from check fraud, especially if you write a lot of checks.
What to do if you are a victim
If you think you have been targeted by check fraud:
Time matters. The faster you act, the better your chances of recovering lost funds.
Kurt’s key takeaways
Check washing fraud is growing rapidly, and criminals are becoming more organized and sophisticated. Simple habits like using gel pens, securing your mail and monitoring your financial accounts closely can make a big difference. Services like USPS Informed Delivery, Positive Pay for businesses and personal data removal tools provide added layers of protection. Identity theft protection services can also offer critical support if you ever become a victim of check fraud.
Have you or someone you know experienced check fraud? Let us know by writing us at Cyberguy.com/Contact
For more of my tech tips and security alerts, subscribe to my free CyberGuy Report Newsletter by heading to Cyberguy.com/Newsletter
Ask Kurt a question or let us know what stories you’d like us to cover
Follow Kurt on his social channels
Answers to the most asked CyberGuy questions:
New from Kurt:
Copyright 2025 CyberGuy.com. All rights reserved.
Bluesky will be getting “communities,” which will function as smaller spaces where you can “go deeper and hang out with people who care about the same stuff” sometime this year, according to head of product Alex Benzer. They will be built on the decentralized AT Protocol that underpins Bluesky, with Benzer saying that “it’s a new structure for everyone” that’s part of the “Atmosphere” (a shorthand for the AT Protocol ecosystem).
Benzer listed out a “few ideas we have in mind so far” in a thread. “On Bluesky, you’ll be able to create communities, join them, post in them, and get updates,” Benzer says. “The core features on Bluesky stay simple. The magic comes from communities also existing on the open web. This means you can truly customize them and add features with other Atmospheric apps and tools.”
Communities will get a handle that “doubles as a URL,” and if you go to that URL, you’ll “land on a custom homepage for the community,” according to Benzer. “Builders can also host a completely custom experience there instead.” There will be three privacy levels for communities: public, invite-only, and private. And each community would have its own feed, Benzer says.
Benzer’s thread follows Bluesky COO Rose Wang saying last week that the company wanted to move away from being a “public square” and that it was “very inspired by companies like Reddit.” Meta’s Threads is currently testing a communities feature, while X announced in April that it would be shutting down its own take on communities.
NEWYou can now listen to Fox News articles!
Amazon is getting ready for Prime Day, and you can bet scammers are, too. In fact, I received a fake Amazon email that looked like an account recovery warning. It claimed there was unusual activity on my account and pushed me to “Sign In to Verify.”
That kind of message can make anyone uneasy. It certainly did for me. After all, who wants to lose access to an account right before a major sale? Then came the part that really stood out: the email said I might need to upload a document to confirm my account.
That was the giveaway. A real deal can save you money. A fake Amazon email can cost you your login, your payment details and even your identity.
Here’s how this scam works, the red flags that exposed it and the steps you should take before clicking any Amazon account warning.
Sign up for my FREE CyberGuy Report
- Get my best tech tips, urgent security alerts and exclusive deals delivered straight to your inbox.
- For simple, real-world ways to spot scams early and stay protected, visit CyberGuy.com – trusted by millions who watch CyberGuy on TV daily.
- Plus, you’ll get instant access to my Ultimate Scam Survival Guide free when you join.
A fake Amazon account recovery email is targeting shoppers ahead of Prime Day, using urgency and document requests to steal sensitive information. (Photographer: David Paul Morris/Bloomberg via Getty Images)
Fake Amazon email warning before Prime Day
The timing made this phishing email more convincing. With Prime Day coming up, many people are already watching for Amazon emails. They may be checking delivery updates, deal alerts and order confirmations. That creates the perfect opening for a fake account warning.
The email used the same tricks you see in many phishing scams. It claimed there was account trouble, used urgent language and pushed me toward a sign-in button. That is exactly what scammers want.
Screenshot of scam fake Amazon email (Kurt “CyberGuy” Knutsson)
They want you to react before you inspect the message. They want you to sign in before you think through the request. And in this case, they wanted me to believe a document upload was part of a normal Amazon account check.
Amazon phishing scam red flags
This fake Amazon email had several warning signs. First, it landed in my junk folder. That alone does not prove fraud, but it should make you cautious.
Second, the subject line sounded awkward. It said, “Account Recovery: Sign-in and Verify your Amazon account.” That wording felt stiff and a little off.
Third, the greeting was generic. The email said “Dear Customer” even though it claimed to be about my Amazon account. That alone does not prove the email is fake, but it adds to the concern.
Fourth, the message created urgency. It claimed the account was on hold and that orders or subscriptions had already been canceled.
Fifth, the sender display name said “Amazon,” while the address appeared as account_update@amazon.com. That may look official at first. Still, scammers can spoof sender names or make email addresses look convincing.
Under the yellow “Sign In to Verify” button, the email also says, “Don’t share it with others.” That may sound protective, but in this context, it felt like another attempt to make the fake warning seem official.
The biggest warning sign came from the document request. The email said I would have the option to upload a document with the required information to verify the account.
That should stop you cold. Scammers may be after more than your Amazon password. They may also want your driver’s license, passport, address, phone number or payment details.
Screenshot of fake Amazon email sender address (Kurt “CyberGuy” Knutsson)
Why fake Amazon account emails fool shoppers
This scam works because it hits a very real fear. Most people do not want to lose access to an online shopping account. That concern grows when a big sale is about to start. If you are planning to buy something on Prime Day, an account warning can feel urgent.
The email also borrowed Amazon’s familiar look. It used the Amazon name, a logo area and a yellow sign-in button. It also included a footer that appeared to show an Amazon.com link. That can make the message feel safer than it really is.
Here is the problem. The visible link text in an email can mislead you. A link can appear to point to Amazon while sending you somewhere else. It can also pass through tracking links, redirects or look-alike pages. That is why you should avoid signing in through any account warning email.
120,000 FAKE SITES FUEL AMAZON PRIME DAY SCAMS
Scammers are impersonating Amazon with convincing account alerts designed to capture login credentials, payment details and personal documents. (Photographer: Michael Nagle/Bloomberg via Getty Images)
What happens if you click a fake Amazon link
If you click the link, you may land on a fake Amazon sign-in page. It may look close enough to fool you. Once you enter your email and password, scammers can try to access your real Amazon account. They may check your saved payment methods, shipping addresses and order history.
They may also try that same password on other websites. That becomes a bigger risk if you reuse passwords.
The document request adds another layer of danger. If a fake page asks for your ID, scammers could use that information for identity theft, account takeovers or other fraud. That is why one quick click can turn into a much bigger mess.
Ways to stay safe from fake Amazon emails
A fake Amazon email can look convincing at first, so the best move is to slow down and use these simple checks before you click, sign in or share anything.
1) Do not click the sign-in button
Skip buttons like “Sign In to Verify,” “View details” or “Restore access.” Open the Amazon app or type Amazon.com into your browser yourself.
2) Check Amazon’s Message Center
After signing in directly, go to Your Account > Message Center. If the alert is real, you should see a matching message there.
3) Watch for pressure language
Scammers often say your account is locked, your orders were canceled, or you must act right away. That pressure is designed to make you click before thinking.
4) Never upload ID through an email link
If an email asks for a passport, driver’s license or other document, stop. Contact Amazon through the app or website before sending anything.
5) Use a password manager
A password manager can help you spot fake login pages. If the page is fake, your saved Amazon password usually will not autofill. Check out the best expert-reviewed password managers of 2026 at CyberGuy.com.
6) Turn on two-step verification
7) Use strong antivirus software
Install strong antivirus software on your computer, phone and tablet. Good security software can help detect malicious links, phishing pages, malware and other threats before they do damage. This is especially important if you clicked a suspicious link or downloaded anything from a fake email. Security software should back up your smart habits, not replace them. Get my picks for the best 2026 antivirus protection winners for your Windows, Mac, Android and iOS devices at CyberGuy.com.
8) Use a data removal service
Scammers often build more convincing attacks with information they find about you online. That can include your name, address, phone number, relatives, old usernames and other personal details from people-search sites and data brokers. A data removal service can help remove your personal information from many of those sites. That makes it harder for scammers to personalize phishing emails and identity theft attempts. Check out my top picks for data removal services and get a free scan to find out if your personal information is already out on the web by visiting CyberGuy.com.
9) Report the suspicious email
Forward suspicious Amazon emails to reportascam@amazon.com. Then delete the message from your inbox or junk folder.
JANUARY SCAMS SURGE: WHY FRAUD SPIKES AT THE START OF THE YEAR
Cybersecurity experts warn consumers to avoid clicking links in Amazon account warning emails and verify alerts directly through Amazon. (David Paul Morris/Bloomberg via Getty Images)
Kurt’s key takeaways
Prime Day is a great time to find real deals, but it is also a busy season for fake Amazon emails. Scammers know shoppers are checking delivery updates, watching for discounts and hoping nothing gets in the way of a good buy. That is what made this email so sneaky. It used a familiar fear at the perfect moment: losing access to your account right before a major sale. The safest move is to slow down before you click. Do not trust the button. Do not trust the sender name alone. Open the Amazon app or type Amazon.com into your browser and check your account yourself.
Have you ever received an email that looked official enough to make you click, and what finally made you stop? Let us know by writing to us at CyberGuy.com.
CLICK HERE TO DOWNLOAD THE FOX NEWS APP
Sign up for my FREE CyberGuy Report
- Get my best tech tips, urgent security alerts and exclusive deals delivered straight to your inbox.
- For simple, real-world ways to spot scams early and stay protected, visit CyberGuy.com – trusted by millions who watch CyberGuy on TV daily.
- Plus, you’ll get instant access to my Ultimate Scam Survival Guide free when you join.
HOW TO DETECT FAKE AMAZON EMAILS AND AVOID IMPERSONATION SCAMS
Copyright 2026 CyberGuy.com. All rights reserved.
It isn’t because Fable doesn’t know the answers. It’s because Anthropic won’t let it, by design.
Fable is a public-facing, Mythos-class model, a family so capable at cybersecurity tasks Anthropic said it was too dangerous to release publicly. But while Anthropic has spent much of the extended Mythos rollout warning about cybersecurity, it is biology where Fable’s guardrails are the most obvious — and most limiting.
When I tried the model, it refused to answer a range of basic biology questions, many that felt about as far away from any plausible safety risk as any question could be. It would not respond to “tell me about cell membranes” or answer “what are mitochondria,” that famous powerhouse of the cell. It refused to explain “what is a prion,” the proteinaceous particles behind mad cow disease, or “how mRNA vaccines work.”
“We made this tradeoff so customers could benefit from the model’s capabilities sooner without the risks.”
The restrictions applied to ordinary and objectively rather harmless medical queries too. Fable would not answer “what causes hay fever,” explain how asthma medicine works, explain how antibiotic resistance arises, or tell me what Ebola is and how it spreads. Some of my basic queries occasionally got through, with Fable answering questions like “what is cancer” and “what is DNA.” When Fable refused, Opus 4.8 generally answered perfectly well.
Anthropic says the broad biology filters are an intentional choice and are deliberately conservative, with bioweapons the primary concern. “With the launch of Claude Fable 5, our first Mythos-class model, we believe models now have a greater ability to accomplish real-world scientific tasks and for malicious actors to potentially use our models for highly risky biological research,” spokesperson Paruul Maheshwary told The Verge. “We have always used classifiers to block our models from helping with bioweapons-related requests. To deploy Fable 5 safely, we believe it was necessary to be overly conservative with our safeguards so they block most queries tied to biology work.”
Anthropic has previously highlighted four key areas where it would throttle Fable’s responses for safety: chemistry, biology, cybersecurity, and distillation, a technique for training smaller AIs using the outputs of larger ones. The company has accused Chinese rivals like DeepSeek of using distillation on its models on an “industrial” scale.
While I could not meaningfully test distillation, Fable seemed more willing to answer questions about chemistry and cybersecurity. For example, it gave a basic overview of the explosive TNT, though withheld synthesis instructions “for obvious reasons.” It readily answered questions on the use of chlorine gas as a chemical weapon, common password threats, and nuclear fusion and fission, as well as explaining how to secure an iPhone from hackers. It still limits: Fable deferred to Opus when I asked it about sarin gas, a highly toxic nerve agent. Fable and Opus both refused the prompt “how to make anthrax,” and Claude paused the chat entirely. That made sense. The mitochondria prompt refusal seems like a false positive.
“We made this tradeoff so customers could benefit from the model’s capabilities sooner without the risks,” Maheshwary explained, adding that Anthropic is working hard to improve its detection and reduce the false positives. “We intend to make Mythos-class models available without these safeguards to the broader biology and life sciences community so these capabilities can be used to accelerate biomedical research and drug discovery.”
Anthropic did not answer questions about whether this kind of restricted release will become the new norm for future models.
Follow topics and authors from this story to see more like this in your personalized homepage feed and to receive email updates.
-
San Diego, CA2 minutes agoPadres minors: Jhony Brito solid in El Paso start, Kerrington Cross leads Storm to win
-
Milwaukee, WI5 minutes agoMilwaukee Music Premiere: Wisconsin Space Program, ‘Time Machine’
-
Atlanta, GA17 minutes agoAtlanta World Cup: Additional watch parties in metro Atlanta
-
Minneapolis, MN20 minutes agoOperation Metro Surge cost Minneapolis $700M, city estimates
-
Indianapolis, IN25 minutes agoWhen is 60th annual Indianapolis Strawberry Festival? Date, time, strawberry shortcake prices
-
Pittsburg, PA32 minutes agoThese teachers around Pittsburgh had highs and lows in their first years. Here’s why they’re coming back.
-
Augusta, GA35 minutes agoDeadly Augusta case highlights ongoing concerns about domestic violence across the CSRA
-
Washington, D.C40 minutes agoHEAT ALERT issued for DC through June 13 — here’s how to stay cool
