Technology
How scammers use Google Voice verification codes to steal your identity, money
Have you ever received a text message or a phone call from someone asking you to verify your identity by sending them a code?
If you have, you may have been targeted by the Google Voice verification code scam.
This is a sneaky and dangerous scam that allows fraudsters to hijack your phone number and use it to scam other people.
CLICK TO GET KURT’S FREE CYBERGUY NEWSLETTER WITH SECURITY ALERTS, QUICK VIDEO TIPS, TECH REVIEWS AND EASY HOW-TO’S TO MAKE YOU SMARTER
Woman taking a photo to sell items (Kurt “CyberGuy” Knutsson)
What is Google Voice?
Google Voice is a free service that lets you make and receive calls, texts and voicemails online. You can use it on your computer, smartphone or tablet. You can also link your Google Voice number to your existing phone number, so you can use both numbers interchangeably.
Google Voice has many features that make it convenient and useful, such as, voicemail transcription, call forwarding, spam filtering, custom greetings, International calling and Google Assistant integration. However, Google Voice also has a verification process that requires you to enter a code that is sent to your phone number. This is where the scammers come in.
BEWARE OF THIS SNEAKY GOOGLE ATTACK THAT STEALS YOUR EXPIRED COOKIES
Google Voice Verification code (Kurt “CyberGuy” Knutsson)
MORE: TV HOST ANDY COHEN SWINDLED IN COSTLY BANK SCAM: HOW TO AVOID BECOMING A VICTIM YOURSELF
What is the Google Voice verification scam?
The Google Voice Verification Scam is a known scam, according to the FTC, but it’s not as widely known by the general public. Here’s how it works.
First, the scammer contacts you via text, email, or phone, pretending to be interested in buying something from you, hiring you, dating you, or any other plausible reason. They may use a fake name, photo, or profile to lure you in.
Second, the scammer asks you to verify your identity by sending them a code that they claim is from Google, Craigslist, Facebook, or any other platform. They may say that this is for security, verification, or confirmation purposes.
Next, the scammer actually initiates a Google Voice setup process using your phone number. They request a verification code from Google, which is then sent to your phone number via text or call.
Then, the scammer asks you to forward the code to them, or tell them the code over the phone. In this case, if you forward or tell them the code, they’ll enter it and complete the Google Voice setup. This means that they now have access to your Google Voice account and number, and they can use it to make calls, send or read texts and receive voicemails online. Where this gets tricky is financial institutions often send similar codes to verify transactions, so if the scammer has possession of your Google Voice account, they can potentially approve transactions out of your account.
Lastly, the scammer can also use your Google Voice number to scam other people, by pretending to be you or someone else. They can also access your personal information, such as your contacts, messages and voicemails, that are linked to your Google Voice account.
Example of Google Voice Verification code text (FTC)
MORE: HOW TO PROTECT YOURSELF FROM THE VENMO, ZELLE AND CASH APP SCAM THAT CAN WIPE OUT YOUR SAVINGS IN SECONDS
Isn’t this scam obvious?
You would think, right? But, even the most experienced sellers who have dealt with their fair share of complex scams are all new to those on Facebook Marketplace. The reason the Google Voice verification scam has been so effective is because these scammers use manipulation to accomplish their scam.
By telling you that they need to check whether or not you are trustworthy, it triggers Facebook Marketplace sellers to demonstrate, “Of course I’m trustworthy, and I’m willing to do whatever I can to prove it, especially if this person is interested in buying from me.”
After all, the concept of an online buyer wanting to confirm the sellers — and the products they are buying are legitimate is common practice. But, in Facebook Marketplace, the lack of regulations makes it easy for both sellers and buyers to become victims of scams. Unfortunately, sellers tend not even to give this scam a second thought, until it’s too late.
What to do if you are a victim of the Google Voice scam
If you have fallen victim to the Google Voice verification code scam, don’t panic. There are some steps you can take to reclaim your number and protect your identity. Here is what you should do:
Change your Google account password and enable two-factor authentication on a separate device. It ensures that the scammer, who might have compromised your primary device, cannot interfere with these security measures.This will prevent the scammer from accessing your Google account and any other services that are linked to it, such as Gmail, YouTube, or Google Photos. You should also regularly check your account activity and review your security settings to see if there are any suspicious or unauthorized actions or devices.
Report the scam to the FTC and your local authorities. You can file a complaint with the Federal Trade Commission (FTC). You can also contact your local police department and file a report. Provide as much information as you can about the scam and the scammer, and keep a copy of the report for your records.
Monitor your credit reports and bank statements. The scammer may have obtained your personal or financial information from your Google Voice account or other sources and may try to use it for identity theft or fraud. You should check your credit reports regularly and look for any errors or suspicious activities. You can get a free credit report from each of the three major credit bureaus (Equifax, Experian and TransUnion) once a year at www.annualcreditreport.com. You should also review your bank statements and alert your bank if you notice any unauthorized transactions or charges.
Use identity theft protection: Identity Theft protection companies can monitor personal information like your Home title, Social Security Number, phone number and email address and alert you if it is being used to open an account. They can also assist you in freezing your bank and credit card accounts to prevent further unauthorized use by criminals.
If you want a service that will walk you through every step of the reporting and recovery process, one of the best things you can do to protect yourself from this type of fraud is to subscribe to an identity theft service. See my tips and best picks on how to protect yourself from identity theft.
MORE: STOP THESE V-DAY SCAMS BEFORE THEY BREAK YOUR HEART AND YOUR BANK ACCOUNT
How to reclaim your Google Voice number if someone has stolen it
Google Voice works by linking to your actual phone number (though some people opt for a new number altogether). If you go to link your phone number and you see that it’s been claimed (and you have no recollection of ever linking it yourself), that means that someone has your number.
Whether or not they got it because you were a victim of this Google Voice verification scam or maybe another way, they’ve now gotten your Google Voice number. Follow the steps from Google Help to reclaim your number and prevent these hackers from doing more harm.
3 ways to avoid the Google Voice verification code scam
The best way to avoid the Google Voice verification code scam is to be vigilant and cautious online. Here are some tips to help you spot and prevent the scam.
1. Never share your verification code with anyone. The verification code is meant for your eyes only. It is not a proof of identity, nor a confirmation of anything. If someone asks you to send them a code, or tell them a code over the phone, it is a red flag that they are trying to scam you. Google, Craigslist, Facebook or any other legitimate platform will never ask you for your verification code.
2. Do your research and trust your instincts. Before you engage with someone online, do some background checks and verify their identity and credibility. You can use search engines, social media, or reverse phone lookup tools to find out more about them. You can also ask them for references, reviews, or testimonials from previous customers or partners.
3. If something seems too good to be true, or too fishy to be real, it probably is. Trust your gut and walk away from any deal or offer that makes you feel uncomfortable or suspicious.
MORE: HOW TO PROTECT YOURSELF FROM SOCIAL MEDIA SCAMMERS
Kurt’s key takeaways
The Google Voice verification code scam is a clever and dangerous scam that can cost you your phone number, your Google account and your identity. By being aware of how the scam works, and following the tips above, you can protect yourself and your loved ones from falling prey to this scam.
Have you ever been asked to provide a verification code when selling online? What happened? Let us know by writing us at Cyberguy.com/Contact.
For more of my tech tips & security alerts, subscribe to my free CyberGuy Report Newsletter by heading to Cyberguy.com/Newsletter.
Ask Kurt a question or let us know what stories you’d like us to cover.
Answers to the most asked CyberGuy questions:
Copyright 2024 CyberGuy.com. All rights reserved.
Technology
Google and Epic give up fighting — third-party Android app stores are coming next week
Epic Games and Google have just jointly withdrawn their attempt to retroactively settle the lawsuit that’s changing how Android app stores work in the United States — and that means Google will be forced to carry rival app stores inside of its own. In fact, Google tells the court, it’s ready to begin carrying third-party app stores on Wednesday, July 22nd. Does that mean it’s time for Microsoft to launch an Xbox game store on Android?
But Judge James Donato was skeptical he should abandon his original permanent injunction in favor of Google’s proposed “Registered App Stores” that users would have to sideload — instead of simply downloading third-party stores directly through Google Play. On Thursday, July 16th, both parties were set to appear in court to argue it again, but that may no longer be necessary.
Here’s is Google’s full statement on withdrawing its proposed modifications to Judge Donato’s permanent injunction, via Google spokesperson Dan Jackson:
We’ve agreed with Epic to withdraw our motion to modify the US Court’s injunction rather than prolonging this process which creates uncertainty for the ecosystem. This allows us to focus on executing our recently announced global business model evolution to deliver greater app store choice, lower prices, and more opportunities for developers and users. We remain committed to maintaining Android’s industry-leading security and fostering a competitive ecosystem where every app store and developer has the freedom to compete. In parallel, we continue to comply with the US Court’s injunction.”
Google had previously announced that it would launch its sideloaded Registered App Store program in the rest of the world, beginning with the new version of Android later this year. That means there may be two different tracks for Android: stores-within-a-store in the United States, and Registered App Stores everywhere else.
It’s not yet clear if there will be a parallel “program” for third-party app stores inside of the Google Play Store, or if companies will simply submit them the way they’d submit any other app. Technically, the court’s permanent injunction states that Google “may not prohibit the distribution of third-party Android app distribution platforms or stores through the Google Play Store,” not that it has to proactively invite them in.
For access to the Google Play catalog of apps, Google will charge stores an annual fee of $5,000 for “security and policy reviews,” and it has many additional requirements, including: stores can’t distribute apps outside of the US, have to be open to all eligible third-party developers, have “clear, non-discriminatory” trust and safety policies, and no more than 1 percent of “install attempts” can be malware.
Technology
Before you connect another smart TV, tablet or phone, lock it down
NEWYou can now listen to Fox News articles!
If your home Wi-Fi is like most, it is packed with connected devices. Smart TVs, phones, tablets, laptops, refrigerators, robot vacuums and security cameras may all be sharing the same network.
The problem is that most people connect a new device first and think about security later. Some never check the settings at all. That gives hackers, data brokers and nosy companies exactly the opening they want.
Before you connect your next smart TV, tablet or phone, take a few minutes to lock it down.
Free live CyberGuy class: Sick of Spam? Join us July 22
Join us Wednesday, July 22, at 1 p.m. ET for a free CyberGuy Live class that will help you cut down on robocalls, spam texts, junk email and other unwanted messages. Kurt “CyberGuy” Knutsson will walk you step by step through simple ways to filter spam, clean up your inbox and recognize the messages that could put your personal information at risk. No technical experience is needed. You’ll also receive our spam-stopping checklist, and every registrant will get a link to the class recording afterward.
Reserve your free spot today at CyberGuyLive.com.
FIVE DATA BROKER OPT-OUT MYTHS THAT LEAVE RETIREES EXPOSED
A new smart TV, phone or tablet can expose your Wi-Fi network if privacy and security settings are ignored during setup. (Kurt “CyberGuy” Knutsson)
Why devices aren’t safe enough right out of the box
When a new gadget arrives in your hands, it isn’t a blank slate. It comes loaded with factory settings designed for convenience instead of protection. Manufacturers want the unboxing experience to feel effortless, so they turn on features, like automatic connections, data sharing and remote access, that make setup easy but leave you exposed.
Smart TVs are some of the worst offenders. Many come with a feature called Automatic Content Recognition (ACR), switched on by default. It works like a fingerprint scanner for your screen, capturing information about everything you watch and sending it back to the manufacturer. You agreed to it somewhere in the terms and conditions you blitzed through when you set it up. Most people have no idea it’s even there.
Tablets and phones bring their own risks. Although many hardware manufacturers like to brag about privacy, lots of tablets and phones will share your location, accept connections from nearby devices, and back up your data to the company’s servers – all by default.
Plus, your home network is only as secure as its weakest device. One poorly configured smart TV or old tablet with an out-of-date OS can give attackers a foothold into everything else connected to the same router.
The 4 things to check before you connect
Before you connect any new smart TV, tablet or phone to your home network, take five minutes to check the settings manually. You do not need to be a tech expert. Focus on the areas that create the biggest openings.
Update the device and change default passwords
First, update the device and change any default passwords or PINs. A brand-new device may have been sitting in a warehouse for months, which means it could already need a security update. Default credentials are also easy for attackers to find online.
Review privacy settings and app permissions
Next, review privacy settings. On a smart TV, look for Automatic Content Recognition, or ACR, and turn it off. Depending on the brand, it may be listed under Viewing Data, Live Plus, SyncPlus, Smart TV Experience or privacy settings. On a phone or tablet, check location, camera, microphone and nearby device permissions.
Turn off features you do not use
Then, turn off connectivity features you do not use. Bluetooth, remote access, file sharing and screen mirroring can all create openings when they stay on all the time.
Add a VPN for another layer of privacy
Finally, consider adding a VPN for another layer of privacy. A VPN encrypts your internet traffic, which helps protect what your smart TV, phone, tablet or laptop sends over the network. A trusted VPN has apps for many popular devices, and it can also run at the router level on compatible routers.
For the best VPN software, see my expert review of the best VPNs for browsing the web privately on your Windows, Mac, Android and iOS devices at CyberGuy.com.
The full checklist below walks you through each step.
New device security checklist
Next time you bring home a smart TV, tablet or phone, do this before you use it every day.
YOU COULD GET PAID FROM GOOGLE’S ANDROID DATA LAWSUIT
Before adding a new device to Wi-Fi, update software, change default passwords and review app permissions. (Kurt “CyberGuy” Knutsson)
1) Put smart devices on a guest Wi-Fi network first
Before you connect the device, open your router app or router settings page. Look for Guest Network, IoT Network or Device Isolation. Create a separate Wi-Fi name for TVs, speakers, cameras and smart home gear.
Use WPA3 Personal if your router offers it. If not, use WPA2 Personal. Give this network a strong password you do not use anywhere else. Then connect the new smart TV or tablet to that network instead of the same Wi-Fi your work laptop uses.
2) Update the software before signing in everywhere
Install updates before you add streaming apps, email accounts or payment info.
- iPhone or iPad: Open Settings > General > Software Update > Download and Install. Then tap Automatic Updates and turn on iOS or iPadOS updates.
- Samsung phone or tablet: Open Settings > Software update > Download and install. On some models, go to Settings > System updates. Settings may vary depending on your device’s manufacturer
- Other Android phone or tablet: Open Settings > System > Software update > System update > Check for update. The exact wording can vary by brand.
- Samsung smart TV: Go to Settings > All Settings > Support > Software Update > Update Now. Turn on Auto Update, too.
- LG smart TV: Go to Settings > All Settings > Support > Software Update > Check for Updates. Turn on Auto Update, too.
- Roku TV or Roku device: Press Home > Settings > System > Software update > Check Now.
3) Change default passwords, PINs and device names
Do not leave factory passwords in place. Change the device PIN, parental control PIN or purchase PIN if the setup screen offers one. Use a password manager to create and store strong, unique passwords. Use a long passcode on phones and tablets instead of a 4-digit code. Also, rename the device. A name like “Kurt’s Bedroom TV” tells more than you need to share. Use something generic like “Living Room TV” or “Tablet 1.”
4) Turn on account protection before adding apps
Before you sign in to Apple, Google, Samsung, Amazon or Roku, turn on two-factor authentication where available. For Roku, set a PIN to help block unwanted purchases, subscriptions and app additions.
- Apple: Open Settings > your name > Sign-In & Security > Two-Factor Authentication > follow the onscreen instructions.
- Google: Open your Google Account > Security & sign-in > How you sign in to Google > 2-Step Verification > Turn on 2-Step Verification > follow the onscreen steps.
- Samsung: Open Settings > your Samsung account name > Security and privacy > Two-step verification > follow the prompts.
- Amazon: Open the Amazon app > account icon > Your Account > Login & security > Two-Step Verification > Get Started > follow the prompts.
- Roku: Go to my.roku.com > sign in > Device settings > PIN/Parental controls > choose when a PIN is required for purchases, subscriptions and adding apps > Save.
5) Turn off ACR and ad tracking on smart TVs
Smart TVs often include Automatic Content Recognition, or ACR. It can identify what appears on your screen for ads, analytics or recommendations. Turn it off during setup or immediately after setup.
- Samsung TV: Press Home > Settings > All Settings > General & Privacy > Terms & Privacy or Privacy Choices. Turn off Viewing Information Services. Also review Interest-Based Advertising and Voice Recognition Services.
- LG TV: Press Settings > All Settings > Support > Privacy & Terms. Look for Live Plus, Viewing Information or advertising options and turn off tracking you do not want.
- Roku TV: Press Home > Settings > Privacy > Smart TV Experience. Uncheck Use info from TV inputs. Then go to Advertising and turn on Limit ad tracking.
- Amazon Fire TV: Go to Settings > Preferences > Privacy Settings. Review Device Usage Data, Collect App Usage Data, Interest-Based Ads and Automatic Content Recognition if that option appears.
- Vizio TV: On newer Vizio TVs, go to All Settings > Privacy & Legal > Viewing Data and turn it off. On older models, go to System > Reset & Admin > Viewing Data. Also review Interest-Based Advertising and Voice Recognition Services.
GOOGLE TURNS OLD PHONES INTO CLOUD SERVERS
A separate guest Wi-Fi network can help keep smart TVs and other connected devices away from personal laptops and phones. (Ute Grabowsky/Photothek via Getty Images))
6) Limit location, camera and microphone access
Phones and tablets often ask for more access than an app needs. Give each app the least access possible.
- iPhone or iPad: Open Settings > Privacy & Security > Location Services. Tap each app and choose Never, Ask Next Time or While Using the App. Then review Camera, Microphone, Bluetooth, Contacts and Photos in the same Privacy & Security menu.
- Samsung Galaxy phone or tablet: Open Settings > Security and privacy > Permission manager. Review Location, Camera, Microphone, Contacts, Nearby devices and Photos and videos. Change apps to Ask every time, Allow only while using the app or Don’t allow when access isn’t needed.
7) Disable wireless features you do not use
Turn off Bluetooth when you do not need it. On phones, tablets and TVs, also look for Nearby Share, Quick Share, AirDrop, file sharing, screen mirroring and remote access.
- iPhone or iPad: Go to Settings > General > AirDrop. Choose Receiving Off or Contacts Only.
- Samsung Galaxy or Android phone: Open Settings and search for Quick Share. Tap Who can share with you, then choose a more private option such as Your devices or Contacts instead of making your phone visible to everyone.
- Smart TV: Open Settings and check Network, Connection or External Device Manager. Turn off remote access, screen sharing or mobile device connection features you do not use.
8) Turn on lost-device protection
Set this up before the device goes missing.
- iPhone or iPad: Open Settings > your name > Find My > Find My iPhone or Find My iPad. Turn on Find My, Find My network and Send Last Location.
- Samsung Galaxy phone or tablet: Open Settings > Security and privacy > Lost device protection. Turn on Allow this phone to be found, Send last location and Offline finding.
- Other Android phone or tablet: Open Settings > Security > Find Hub and make sure Allow device to be located is turned on. The wording may vary by brand.
For tablets used by kids or guests, write down the serial number. Keep it somewhere safe in case you need to report the device lost or stolen.
9) Remove apps you do not need
New devices often come with preinstalled apps. Delete or disable anything you will not use. Then install apps only from the official app store for that device.
On phones and tablets, avoid sideloading apps unless you know exactly where they came from.
On smart TVs, skip random free streaming apps with poor reviews, no clear developer or strange permission prompts.
10) Cover everything with a VPN
A VPN adds a layer of privacy by encrypting your internet traffic before it leaves your device. That can help limit what your internet provider can see and add protection when you use public Wi-Fi.
Look for a trusted VPN that offers apps for phones, tablets, computers and streaming devices. Some VPNs can also run at the router level on compatible routers. That option can be helpful because it may protect devices that do not support a VPN app, such as some smart TVs, game consoles and connected home gadgets.
Once a router VPN is set up, connected devices can receive VPN protection automatically. Just remember that a VPN does not make you invisible online. Websites may still recognize you when you log in, share personal details or use the same browser. Still, for everyday privacy, a reliable VPN can be a smart extra layer.
For the best VPN software, see my expert review of the best VPNs for browsing the web privately on your Windows, Mac, Android and iOS devices at CyberGuy.com.
Key takeaways
The default settings most devices ship with are designed for the manufacturer’s benefit, not yours. Before you connect your next smart TV, tablet, or phone, take a few minutes to go through the settings, lock down what doesn’t need to be open, and put a VPN between your network and the rest of the internet.
Have you ever found a privacy setting on a new device that surprised you? Let us know by writing to us at CyberGuy.com.
CLICK HERE TO DOWNLOAD THE FOX NEWS APP
Sign up for my FREE CyberGuy Report
- Get my best tech tips, urgent security alerts and exclusive deals delivered straight to your inbox.
- For simple, real-world ways to spot scams early and stay protected, visit CyberGuy.com – trusted by millions who watch CyberGuy on TV daily.
- Plus, you’ll get instant access to my Ultimate Scam Survival Guide free when you join.
Copyright 2026 CyberGuy.com. All rights reserved.
Technology
Nintendo’s Switch 2 bundle that includes a game is $50 off
Discounts on the Nintendo Switch 2 are rare, but they do happen on occasion. There’s one happening now, actually, on the company’s $499.99 console bundle that includes a digital game (Mario Kart World, Donkey Kong Bananza, or Pokémon Pokopia). Usually, the bundle saves you $20 or $30, depending on the game you choose, but for $449.99 at Amazon, Nintendo is effectively giving a game to you for free.
If you’re considering grabbing a Switch 2, I highly recommend doing so now. The biggest motivator (aside from its great selection of games and near-complete compatibility with original Switch games) is that the console will get a price hike in September, going from $449.99 to $499.99. Also, it’s not clear if it will continue to include a discounted game with purchase at that point. So, you’re getting more value at $449.99 here than ever before.
-
Los Angeles, Ca12 minutes agoSouthern California hits hottest day of its extreme heat warning
-
Detroit, MI36 minutes agoSteve Yzerman out as Detroit Red Wings GM, moves to senior advisor role
-
San Francisco, CA48 minutes agoSupervisors urge California to expand S.F. speed-camera program
-
Dallas, TX54 minutes agoFive teens injured after crashing carjacked vehicle during Dallas police chase
-
Miami, FL60 minutes agoTokyo-style Neapolitan pizza is coming to Miami, led by legendary pizzaiolo chef Bun
-
Boston, MA1 hour agoSEE THE GOOD: Roxbury center reminds young adults ‘You got this’ – Boston News, Weather, Sports | WHDH 7News
-
Denver, CO1 hour ago
Five Points affordable housing building honors Dr. Justina Ford | Rocky Mountain PBS
-
Seattle, WA1 hour agoSeattle weather: Hot and sunny day Wednesday, highs in the 80s