Gail Barr expected birthday calls on her 70th birthday. She got plenty of sweet messages from family and friends. Then one voicemail turned her day upside down. The caller claimed to be Chief Deputy Derek Elmore with the Maricopa County Sheriff’s Office. He said Gail had an urgent legal matter involving court documents from an Arizona judge. When Gail called back, the story got scarier.

She had missed jury duty, the caller said. Now she needed to pay a nearly $10,000 fine or risk arrest. Gail is a nurse practitioner. She knows how to handle medical pressure. But a missed jury duty threat felt different. “Well, I didn’t know,” Gail said on the CyberGuy Report podcast at cyberguy.com/podcast, “I know medical things, but I didn’t know how that worked.” That confusion helped the scammer pull her deeper into a jury duty crypto scam.

6 CRYPTO SCAM SCRIPTS CRIMINALS USE TO STEAL YOUR MONEY

Sign up for my FREE CyberGuy Report

• Get my best tech tips, urgent security alerts and exclusive deals delivered straight to your inbox.
• For simple, real-world ways to spot scams early and stay protected, visit CyberGuy.com – trusted by millions who watch CyberGuy on TV daily.
• Plus, you’ll get instant access to my Ultimate Scam Survival Guide free when you join.

How the jury duty crypto scam fooled Gail

The scammer did not sound like a random criminal. He used real local names and official-sounding titles. Gail said the voicemail mentioned Judge Jennifer Zipes. She checked the name and found that Jennifer Zipes was indeed an Arizona judge. She also looked up Derek Elmore and found a law enforcement connection. That made the call feel real.

Gail said she was transferred to someone who claimed to be Police Captain John Bailey. He gave her a badge number. He also told her she had been hand-selected for a grand jury case because of her medical background. That detail hit hard. Gail had worked in nursing and as a nurse practitioner. So the story felt possible.

“They said that I was hand-selected by the judge to appear in a grand jury, a medical malpractice case, because of my background in nursing,” Gail said. “So that kind of rang a bell that I believed them.” Then came the threat. The caller claimed Gail had signed a subpoena, failed to appear in court and now faced citations for contempt of court and failure to appear. 

Why the fake sheriff’s call felt so real

Scammers know how to use fear. They also know how to use pieces of real information to make a lie sound believable. That is what happened to Gail. The caller used the names of real people. He knew enough about her work to make the story fit. He also sounded calm and official.

Gail said there were “no accents involved” and that the call sounded “totally legit.” When I asked her if it was a legitimate call, Gail’s answer was direct. “Not at all,” she said. Still, in the moment, the pressure worked. “Something seemed a little weird, I think, but I just kept going because I was frightened,” Gail said. That is the part scammers count on. They want you scared enough to act before you think.

The $9,260 demand that sent Gail to a Bitcoin ATM

The caller told Gail she needed to pay $9,260. He called it a payment through a “federal bonding kiosk.” That phrase sounds official. But it was really a Bitcoin machine inside a Circle K. Gail said she did not know much about Bitcoin. Her son did, but the scammer told her not to call anyone. “They said you cannot get off the phone with us,” Gail said. “You must stay on the phone the whole time.”

The caller claimed they needed to make sure she did not “skip town.” He also told her not to tell the bank why she needed the cash. That is one of the biggest red flags in this entire story. Gail withdrew the money. Then she went to the crypto kiosk. The scammer sent her an official-looking barcode that appeared to come from the Maricopa County Sheriff’s Office.

She scanned it and fed the cash into the machine. “We had to do it, like, five different times because there was a limit to how much you could put in at once,” Gail said. “I was getting very tired. I was so tired.” By the end, Gail had deposited $9,260. “And that was money that I had worked for,” Gail said. “I went back to work to help pay for my son’s medical bills.”

The crypto scam did not stop after Gail paid

After Gail sent the money, the scammer told her to go to the sheriff’s department. Then he suddenly claimed there was another problem. This time, he said Gail had a federal citation. He wanted another $12,000. Gail said she did not have that much money. So the scammer lowered the demand to $3,000 and sent her to another bank. That second bank visit saved her from losing more.

The bank manager asked what the money was for. Gail gave the excuse that the scammer had told her to use. Then the manager asked whether she planned to give the money to her son that day. That question broke through the fear. Gail said no. The manager took her aside and talked with her. He knew something was wrong.

How Gail got her jury duty scam money back

After Gail realized what had happened, she went home and told her husband and son. She also contacted a local news reporter. That is how Gail learned about Arizona’s Cryptocurrency Kiosk License Fraud Prevention law. “It went into effect a month before my scam,” Gail said. “And what it does is it protects people like myself who have been scammed to get all of their money back.”

Arizona’s law requires crypto kiosk operators to provide fraud warnings, transaction receipts, daily limits and refund protections for certain victims who report fraud within the required time window. The Arizona Corporation Commission says the law took effect Sept. 26, 2025. Gail moved fast. “You have to file a police report within 30 days,” she said. “And you have to contact the cryptocurrency kiosk, Bitcoin Machine Company. I also made a report to the attorney general.” After she completed the steps, Gail got her money back by check. “It was a good birthday present,” she said.

States with crypto ATM fraud laws

Crypto ATM scams have become a major problem. AARP reports that cryptocurrency kiosks were used in scams tied to more than $389 million in reported losses in 2025. Adults 60 and older accounted for 86% of reported losses in cases where the victim’s age was known. AARP also reports that 29 states had passed crypto kiosk laws as of April 2026. These laws can include transaction limits, fraud warning signs, licensing rules and receipt requirements. Indiana became the first state to enact a statewide ban. Tennessee later became the second state to enact a ban.

States publicly identified in AARP reporting and related coverage as having enacted crypto ATM protections, restrictions, or bans include: California, Connecticut, Arizona, Colorado, Illinois, Indiana, Iowa, Nebraska, Tennessee, Vermont, and Wisconsin.

Some states regulate the machines instead of banning them. Others limit daily deposits, require warning signs or force operators to help refund fraud victims. California and Connecticut were among the first states to pass crypto ATM laws in 2023. Vermont extended a moratorium on new crypto kiosks to July 1, 2026. Nebraska passed statewide legislation in 2025. Iowa passed a crypto kiosk consumer protection law in 2025.

THIS IS WHAT YOU ARE DOING WRONG WHEN SCAMMERS CALL

Red flags in a jury duty crypto scam

This scam had several warning signs. Knowing them can help you stop the same trick before it drains your account.

A caller threatens arrest

Real courts do not demand instant payment over the phone to make an arrest warrant disappear.

The caller tells you to stay on the phone

Scammers do this so you cannot call family, police or the real court.

The caller says not to tell the bank

A real law enforcement officer will not tell you to lie about why you need cash.

The caller sends you to a crypto kiosk

 Courts, sheriff’s offices and government agencies do not collect fines through Bitcoin ATMs.

The caller uses real names

Scammers often use public information to make the lie feel real.

The caller creates panic

They want you scared, tired and rushed.

Tips to protect yourself from a jury duty scam

Here are the warning signs to watch for and the simple steps that can help you avoid falling for a jury duty scam.

1) Hang up and verify the claim yourself

Hang up if someone says you will be arrested unless you pay immediately. Then call the court directly using a number from an official government website. Do not use the phone number left in the voicemail. Also, avoid links sent by text or email. Scammers can spoof phone numbers, copy official names and build fake websites that look convincing.  Use strong antivirus software, to help block malicious links, fake websites and phishing messages before they trick you into handing over personal information. Get my picks for the best 2026 antivirus protection winners for your Windows, Mac, Android & iOS devices at Cyberguy.com

2) Never pay a court fine through a Bitcoin ATM

A real court will not demand payment through cryptocurrency, gift cards, wire transfers or payment apps. That means any request to visit a Bitcoin machine should stop the conversation. The same goes for a caller who says the machine is a “bonding kiosk” or “federal kiosk.” Those phrases are meant to make the scam sound official. 

3) Talk to someone before you withdraw cash

Call a spouse, an adult child, a friend, an attorney or a local court clerk before withdrawing money. A quick conversation can break the scammer’s hold. Scammers often tell victims to stay on the phone to maintain control. They do not want you to hear a calm second opinion. If a caller says you cannot hang up, hang up anyway.

4) Tell the bank what is really happening

Ask your bank for help if you feel rushed, scared or confused. Tell the teller or bank manager exactly what the caller said. Do not use the cover story the scammer gave you. Gail was told to say the money was for her son. That kind of instruction is a major red flag. A real law enforcement officer will not tell you to lie to your bank.

5) Check your jury duty status through the court

Look up your jury duty status through your county court website. You can also call the clerk’s office directly. Do not click a link sent by the caller. Some jury duty scammers now use fake websites to collect personal information and steal money.

6) Watch for personal details that make the scam feel real

Scammers may know your name, job, address or family details. That does not make the call legitimate. Much of that information can come from public records, data broker sites or past data breaches. If a caller uses personal details to scare you, pause before you react.

7) Use a data removal service to reduce your online exposure

Consider using a data removal service to reduce the personal information scammers can find about you online. These services can help remove your name, address, phone number and other details from many people-search and data broker sites. This will not erase everything from the internet. However, it can make it harder for scammers to build a convincing story around your life, job or family. Check out my top picks for data removal services and get a free scan to find out if your personal information is already out on the web by visiting Cyberguy.com

HOW SCAMMERS BUILD A PROFILE ON YOU USING DATA BROKERS

What to do if you already paid a crypto scammer

If you already sent money through a crypto kiosk, speed matters. Acting quickly can help you document the fraud, secure your accounts and possibly qualify for protections in your state.

Act fast after a crypto scam payment

Move quickly if you have already sent money through a crypto kiosk. Time can matter, especially in states with refund protections. Some state crypto ATM laws require victims to report the fraud within a set window. In Gail’s case, Arizona’s law required fast action, including a police report and contact with the kiosk operator. 

File a police report right away

Start with a police report. Ask for a copy or report number. You may need that report when you contact the crypto kiosk company, your bank, your state attorney general or any consumer protection agency.

Contact the crypto kiosk operator

Check the receipt or the machine for the crypto kiosk operator’s contact information. Then report the fraud directly to the company. Share the transaction details, time, location, barcode or wallet address if you have it. Also, provide the police report number.

Report the scam to federal agencies

Report the scam to the FBI’s Internet Crime Complaint Center at IC3.gov. Also, file a report with the FTC at ReportFraud.ftc.gov. These reports help federal agencies track scam patterns. They may also create a record you can use when dealing with the kiosk operator or state officials.

Contact your state attorney general

Report the scam to your state attorney general’s office. This step can be especially important if your state has crypto kiosk protections or refund rules. Your state may also track complaints tied to specific kiosk operators. That can help investigators spot larger scam patterns.

Save every piece of evidence

Keep the receipt, barcode, phone number, voicemail, text messages and any names the caller used. Also, write down the address of the kiosk and the time of each transaction. Do not delete anything, even if it feels embarrassing. Those details may help law enforcement, the kiosk operator or your state consumer protection office review the case.

Ask your bank to secure your accounts

Contact your bank after the scam. Even if the crypto payment cannot be reversed, the bank can help protect your accounts. Ask about new debit cards, password changes, account alerts and extra verification steps. Also, review recent transactions for anything suspicious.

Kurt’s key takeaways

Gail’s story shows how fast a normal day can turn into a financial emergency. One fake sheriff’s call, one believable legal threat and one Bitcoin machine almost cost her nearly $10,000 for good. The most important lesson is simple. Fear is the scammer’s favorite tool. They want you rushed, isolated and too embarrassed to ask for help. Gail got her money back because Arizona had a new law, and she acted fast. Many victims never recover a dime. That is why these crypto kiosk laws matter. They give people a fighting chance after scammers use technology to make cash vanish. If someone calls and says you missed jury duty, pause before you panic. Real courts do not solve legal problems through a Bitcoin ATM at a convenience store. To hear more of Gail’s story, check out  the CyberGuy Report podcast at cyberguy.com/podcast

CLICK HERE TO DOWNLOAD THE FOX NEWS APP

Should crypto ATMs be allowed in convenience stores if scammers keep using them to drain people’s savings? Let us know by writing to us at Cyberguy.com

Sign up for my FREE CyberGuy Report

• Get my best tech tips, urgent security alerts and exclusive deals delivered straight to your inbox.
• For simple, real-world ways to spot scams early and stay protected, visit CyberGuy.com – trusted by millions who watch CyberGuy on TV daily.
• Plus, you’ll get instant access to my Ultimate Scam Survival Guide free when you join.

Copyright 2026 CyberGuy.com.  All rights reserved.

You have not turned 65 yet. But somewhere, your birthday may already be flagged in a database. That milestone is tied to Medicare eligibility, Social Security decisions and major financial choices.

It can also put your name in front of insurance marketers, Medicare agents, lead generators and scammers around the same time.

Here is the part many people miss: turning 65 can become a targeting event. Your age, address, phone number, relatives’ names and other personal details may already be sitting on people-search sites and data broker lists.

Once you get close to Medicare age, those details can become more valuable. That is why it helps to prepare before the calls, texts, letters and emails start piling up.

REMOVE YOUR DATA TO PROTECT YOUR RETIREMENT FROM SCAMMERS

Sign up for my FREE CyberGuy Report

• Get my best tech tips, urgent security alerts and exclusive deals delivered straight to your inbox.
• For simple, real-world ways to spot scams early and stay protected, visit CyberGuy.com – trusted by millions who watch CyberGuy on TV daily.
• Plus, you’ll get instant access to my Ultimate Scam Survival Guide free when you join.

Why turning 65 can put you on marketing lists

Data brokers collect and package personal information. They build basic profiles, and they can also create age-based lists tied to major life events. Turning 65 is a valuable trigger because Medicare enrollment, supplemental insurance decisions and Social Security timing all happen in a narrow window.

That narrow window creates demand from insurers, agents, lead generators and criminals looking for people who may be making big decisions. Legal marketing drives part of this activity. Aggressive sales tactics drive another part. Fraud drives the most dangerous part. The same information that helps send Medicare mailers to your mailbox can also help scammers sound more convincing when they call, text or email.

How data brokers turn your birthday into a business

Data brokers don’t just collect static information. They build age-triggered profiles, records that are specifically flagged and resold when a person approaches a major life milestone. Turning 65 is one of the most commercially valuable triggers in their entire database.

Why? Because Medicare enrollment, supplemental insurance decisions, and Social Security timing all happen in a narrow window. That creates enormous demand, from legitimate insurers, from aggressive lead generators, and from outright criminals, for a list of people who are about to become eligible. These lists are legal to compile. They’re legal to sell. And the same data that sends a flood of Medicare mailers to your mailbox is the same data that lands your name and phone number on a scammer’s calling sheet.

In fact, in 2024, the Centers for Medicare and Medicaid Services (CMS) took action on more than 73,000 unauthorized Medicare plan switches, cases where agents or bad actors enrolled people in plans they never agreed to, often without their knowledge. CMS has directly linked this surge of unauthorized activity to the aggressive use of lead generation databases and third-party data brokers feeding agent networks with pre-qualified prospect lists. That’s more than 73,000 people who woke up to find their Medicare coverage had been changed, and they never made a single call. And that’s before counting the impersonators.

The Social Security Administration reports that SSA impersonation scams are among the most reported fraud types in the United States, with losses in the hundreds of millions each year. The FTC logged over $76 million in losses from government impersonation scams in 2023 alone, a number that consistently spikes around Medicare enrollment season. Turning 65 doesn’t just open a door for you. It opens one for them, too.

The month-by-month countdown and what to do at each milestone

The good news: there’s a window. You don’t have to wait until the scam calls, texts or emails start arriving. Here’s exactly what to do, and when.

6 months out: Scrub your information before the targeting begins

This is your most important window, and most people miss it entirely. Six months before your 65th birthday, the data broker flags around your profile are already active. Marketing lists are being compiled. Lead generators are packaging your details. The calls haven’t started yet, but the infrastructure is being built.

Action 1: Search your own name right now

Go to Spokeo, Whitepages or BeenVerified and look up what a stranger sees when they search for you. Your age, address history, relatives’ names, phone numbers and property records are likely all there. That snapshot is what insurance agents and scammers are working from. If you’re interested in checking your exposure, some data removal services provide a free report on where your data is exposed and give results within an hour.

Action 2: Start removing your data from broker databases

Manually opting out of each data broker is possible, but it can take a lot of time. There are hundreds of these sites, and each one has its own removal process. Even after you opt out, your information can reappear later.

Start with the people-search sites that show the most personal details about you, such as your age, current address, past addresses, phone numbers and relatives’ names. Then request removal directly through each site’s opt-out page. You can also use a reputable data removal service to help automate the process. These services submit removal requests to many data brokers on your behalf and continue checking whether your information shows up again.

This step matters because scammers often use exposed personal details to sound more believable. If they know your age, address, family connections or past places you lived, a fake Medicare or Social Security message can feel much more convincing.

Getting ahead of this six months out can make the difference between a manageable trickle of calls, texts and emails and being overwhelmed at the worst possible moment.

Check out my top picks for data removal services and get a free scan to find out if your personal information is already out on the web by visiting CyberGuy.com.

Action 3: Tell your family what’s coming

Let your spouse, adult children or close relatives know that your enrollment window is approaching and that scammers know it too. Establish a simple rule now: any unexpected call, text or email about Medicare, Social Security or benefits gets verified before any action is taken. No exceptions.

SCAMS THAT AREN’T ILLEGAL (BUT SHOULD BE)

3 months out: Lock down your accounts before the volume spikes

By now, the calls have likely started. That’s normal and expected. What matters is what you do before the fraudulent ones arrive.

Action 1: Contact Medicare directly to initiate enrollment, and only Medicare directly

You can enroll online at Medicare.gov or by calling 1-800-MEDICARE (1-800-633-4227).

This sounds obvious. But this is exactly the moment when impersonators pose as Medicare representatives offering to “help you enroll.” The real Medicare program will never call you unsolicited, ask for payment over the phone, or pressure you to decide immediately. If anyone does, hang up.

Action 2: Change your security questions at your bank and financial institutions

This is urgent and almost always overlooked.

Data broker profiles routinely include your mother’s maiden name, previous addresses, city of birth, and other details that financial institutions still use as identity verification. A scammer with your broker profile can often answer these questions cold, without ever hacking a single account.

Call your bank, brokerage, and insurance providers. Switch to nonsense answers that only you know (“What was your childhood pet’s name?” “RedTruckSeven”). Store them in a password manager. This one step can prevent account takeovers that your password alone can’t stop.

Action 3: Place a credit freeze with all three bureaus

Equifax, Experian, and TransUnion all allow free credit freezes. A freeze doesn’t affect your score or any existing accounts; it simply prevents new lines of credit from being opened in your name without your direct authorization.

Medicare enrollment season is prime time for identity theft tied to new account fraud. Freeze first. Unfreeze only when you need to.

1 month out: Get your Medicare card — and protect it like a Social Security number

This is crunch time. Decisions are being made, paperwork is arriving, and the volume of contact, both legitimate and fraudulent, is at its peak.

Action 1: Confirm your Medicare card arrival and treat it like classified information

Your Medicare card arrives by mail and carries your Medicare Beneficiary Identifier (MBI), a unique number that functions, for medical purposes, like a Social Security number. In the wrong hands, it can be used to bill Medicare for services you never received. Do not carry the physical card in your wallet. Take a photo of it, store it securely, and give the number only to verified providers. Medicare fraud through stolen or misused MBI numbers costs the program an estimated $60 billion per year.

Action 2: Verify every agent before sharing any information

If someone contacts you claiming to be a Medicare advisor, insurance broker, or benefits specialist, verify them independently before saying anything. Ask for their National Producer Number (NPN). Every licensed insurance agent in the United States is required to have one. Look it up yourself at nipr.com before continuing the conversation. Agents involved in the more than 73,000 unauthorized plan switches often relied on people not knowing this check existed.

Action 3: Confirm your Social Security status directly with the SSA

Log in or create an account at ssa.gov. Confirm your benefit amounts, confirm your contact information on file, and make sure no changes have been made without your knowledge. SSA impersonators frequently call during this window, claiming there’s a problem with your record, creating false urgency to get your Social Security number or bank account information. If you receive one of these calls, hang up. Call SSA directly at 1-800-772-1213. The real SSA will never threaten arrest, demand gift cards, or require immediate payment.

HOW TO HAND OFF DATA PRIVACY RESPONSIBILITIES FOR OLDER ADULTS TO A TRUSTED LOVED ONE

The week of: One final sweep before your coverage goes live

Your birthday week is the finish line, but it’s also when the most aggressive targeting happens, because time pressure creates vulnerability.

Action 1: Confirm your plan enrollment directly through Medicare.gov

Log in to your Medicare account and verify exactly what you’re enrolled in. Check that your plan name, coverage type, and effective date are what you chose. If anything looks wrong, an unfamiliar plan name, a plan you don’t recognize, call 1-800-MEDICARE immediately and report it. This is how you catch an unauthorized switch before it affects your coverage.

Action 2: Run one final data broker check

A lot can change in six months. Search your name again on people-search sites and verify what’s still publicly visible. If Incogni has been running in the background, you should see a meaningful reduction in what appears. If new information has surfaced, a recent address, a new phone number, flag it for removal.

Action 3: Set up a call screening system going forward

The targeting doesn’t stop after your birthday. Medicare open enrollment runs from Oct. 15 through Dec. 7 every year, and scam activity spikes again each fall. Turn on your phone’s built-in spam call filtering, register your number with the National Do Not Call Registry at donotcall.gov, and consider using your carrier’s call protection service (most offer one for free). These won’t stop every call, but they’ll reduce the noise significantly.

Kurt’s key takeaways

Your 65th birthday can put your name on lists used by marketers, agents, lead generators and scammers. Medicare scams can become especially dangerous because the timing feels real. You are already expecting mail, calls and decisions, which gives criminals an opening. Start early. Six months out, look for your personal information online and begin removing it. Three months out, lock down your financial accounts and freeze your credit. One month out, protect your Medicare card and verify any agent before sharing information. During your birthday week, check your Medicare enrollment directly and set up call screening for the months ahead. The people targeting you are counting on confusion. A clear month-by-month plan gives you control before someone tries to take it from you.

CLICK HERE TO DOWNLOAD THE FOX NEWS APP

If companies can profit from knowing when you turn 65, should they also be responsible when that data helps scammers target you? Let us know by writing to us at CyberGuy.com.

Sign up for my FREE CyberGuy Report

• Get my best tech tips, urgent security alerts and exclusive deals delivered straight to your inbox.
• For simple, real-world ways to spot scams early and stay protected, visit CyberGuy.com – trusted by millions who watch CyberGuy on TV daily.
• Plus, you’ll get instant access to my Ultimate Scam Survival Guide free when you join.

Copyright 2026 CyberGuy.com. All rights reserved.