Investigations Archives

How to Catch a Cheater: The Web & Infidelity

We see our fair share of infidelity cases in which a Private Investigator wants to conduct a deep web scan on the person accused of cheating. This is always a mixed bag for us because there isn’t any software out there than can pull any or all data from dating sites. Most dating sites are password protected sites and require the user to have an account in order to search. And sometimes it is even hard to search when you have set up a fake account.

If you are willing to take the time to set up fake accounts, it may be worth it in the long run. This is especially true if you take on cases like this. You may even find it helpful in other online investigations too. Here is how.

Dating Sites

Match.com

Must have an account to search.
Create a fake account to get started.
Change your settings so you can be invisible and therefore not be able to be “searched”.

From there you can search. This is a great place to start any OSINT investigation because if a person is on a dating site, chances are they will be much more open there. You may be able to gather quite a bit of information that will help you locate your target on other sites, such as social media.

There are a lot more photos. Most people on a dating site want people to see them and therefore you will have more to go on.

Ashely Madison

Ashely Madison was hacked in 2015. Back then, hackers calling themselves the “Impact Team” stole 32 million records from users of the world’s leading extramarital affair site. As datasets go, this is one that’s tailor-made for extortion. Many people claimed to have the data dump, most proved to be untrue. I would bet that it made its way to the Dark Web however where information could be obtained for a fee and used in extortion cases. This one may be worth creating a fake account in. If you are not aware, it is designed for people who are married, but are looking to have an affair.

Meetup.com

This site is not exclusively used for dating. There are many different types of groups based on a particular interest. It may be a good one to dive into if you know some personal information on your target. For example, is your target a musician? There may be a group for that locally. It may seem like a long shot, but if you have the time, it could be worth the effort.

What About the Deep Web?

Diving into the deep web may help us to find a breadcrumb that could lead us to information that can help in surveillance. It may be a trend that is picked up relative to being part of the same forum, group or professional network. In cases like an infidelity case, the more data we have the better. One common thread, in discovering a cheating spouse, is the use of multiple email addresses. Try searching using all the email addresses because one of them just may be tied to a profile identifying the target. Almost any group or site online requires you to give an email address.

As you can see it is not always easy. While it may seem impossible, if you are willing to devote time to it, you may find what you are looking for.

4 Key Considerations For Social Media Intelligence

I recently had an insightful conversation with a Paralegal on using social media for deposition cases. He shared with me that the firm he works for conducts social media research on everyone. He shared that it was the only way they knew if their clients were being truthful with them. Too many times they learned of mistruths during the actual deposition. Can you imagine? Social media intelligence is becoming increasingly necessary for many cases.

That led me to think about what we do when we conduct social media/deep web research on a person of interest for a client. The who, what, where and why is becoming more and more important. Let’s beak it down even further.

The Who- What – Where – & Why –

Who: The who is the demographic information on your person of interest. This plays an important role in how we approach the search. Staying up to date on social media usage by demographics will help you narrow down your search a bit. Or, at the very least, give you a starting place.
What: What is the case about? Is it fraud, infidelity, workman’s comp, insurance fraud? This matters a lot. Depending on the case, there are less obvious sites to take a look at. For example, if an employee is stealing merchandise from their place of employment you may need to visit eBay or Craigs List.
Where: What area of the country does the person live? Someone living in a small town with limited resources may approach things differently that a person living in a huge city. The number of friends may be significantly larger in Facebook just because the city person may know more people.
Why: The why has to do with what you are specifically looking for. “We need to know if the suspect was active in sports after a certain date.” We are given this information by our clients many times. By knowing this information, we are able to use our time better by looking in social media specifically for this type of posting.

Stay Up To Date With Statistics As Part of Your Social Intelligence Process

Researchers are trained to keep up with changes in social media usage. It is part of an overall social media intelligence strategy. And that is not an easy task because people change their usage all the time. Ask any social media marketer. They are constantly looking at what is new in each platform on a weekly basis to be sure they are hitting the right audience with their marketing.

You see, it is not only about software. Software helps us to pinpoint areas of interest and certainly gives us additional, important clues. It helps to streamline the process. However, the human side is just as important if not more. Artificial intelligence and the understanding of algorithms are important but they have in no way replaced skilled researchers.

Who is Tied to This Email Address?

We have had a few requests over the years asking if there is a way to search an email address to see who it is tied to. There are actually numerous ways in which to do this on several different sites. Many of them require payment of some kind. You can try basic searches in Google, Bing and Yahoo first, however if you come up empty there, where do you go?

Interestingly enough, data breaches over the years have become an open source researchers’ best friend. In part this is due to the fact that when there is a large-scale data breach, it is often obligatory for the business to provide a site in which a user can check to see if they are part of the breach.

When searching for an email owner, we may want to know if the email is valid. Does it even exist or is it a made up, dummy email? By using some of the resources in this post, you can at least get confirmation that the email is valid. For example, if you discover the email has been part of a data breach, chances are it is a real email address. We can go one step further to say, with a degree of confidence, that it is most likely tied to other discoverable items in the deep web.

Not all data breach sites allow the user to look up another person’s email address. Most want to verify you are indeed the owner of the email address and genuinely want to know if your email has been compromised. There are a few that are not as strict. Two example sites that offer a quick and easy scan are:

Have I been Pnwed?

A quick search here will tell you if the email address has been part of a data breach or not. While it isn’t going to give you any details, it will give you a number of times it has been included in a breach of some kind.

You can see that a quick scan of this email address indicates it has been a part of 5 breached sites but doesn’t tell you which ones. It does let you know that it is most likely a “real” email address.

Avast Email Check

Another site you can try is Avast. This is one of the newest sites that provides users the opportunities to scan for a “friend’s email address”.

Marianne’s email was linked to MySpace, which leads me to think that she had an account at some point tied to this email address. I would search on the site to see if anything still exists in MySpace.

You may also want to try variations of the email address just in case you find closely configured email addresses. Use Google, Bing to search them to see what you come up with.

COVID-19 Fraud: South Miami

Emerging scams due to the COVID-19 Pandemic.

The scams have begun around COVID-19 and it appears to be just starting. When people are hit with diversity, sadly we begin to see the good, the bad, and the ugly. In fact, Americans have lost over 12 million dollars to Coronavirus scams already. The concentration in South Miami has been because of numerous complaints. This alerted the US Attorney’s Office to launch a task force in connection with local authorities to combat this growing problem.

Education is the best defense and law enforcement is doing just that with a series of community alerts, media reports and social media posts. Alerting the public to the risks early in an attempt to counteract the schemes.

In one of our latest blog posts, Crime Never Sleeps COVID-19 Online Schemes & Insurance Fraud, we alerted our Private Investigators to what we were seeing as emerging trends in the insurance industry. Below, is a set of scams targeting individuals.

Here are some examples of COVID-19 scams, reported by Sabrina Lolo, of West Palm Beach News:

Unlawful Hoarding and Price-Gouging: The Department of Health and Human Services (HHS) has designated certain health and medical resources necessary to respond to the COVID-19 pandemic as “scarce,” including respirator masks, ventilators, and other medical protective equipment. These designated materials are subject to the hoarding prevention measures that trigger both criminal and civil remedies.
Testing Scams: Scammers are selling fake at-home test kits or going door-to-door performing fake tests for money.
Treatment Scams: Scammers are offering to sell fake cures, vaccines, and advice on unproven treatments for COVID-19.
Supply Scams: Scammers are creating fake shops, websites, social media accounts, and email addresses claiming to sell medical supplies currently in high demand, such as surgical masks. When consumers attempt to purchase supplies through these channels, fraudsters pocket the money and never provide the promised supplies.
Provider Scams: Scammers are also contacting people by phone and email, pretending to be doctors and hospitals that have treated a friend or relative for COVID-19, and demanding payment for that treatment.
Charity Scams: Scammers are soliciting donations for individuals, groups, and areas affected by COVID-19.
Phishing Scams and Cyber Intrusions: Scammers posing as national and global health authorities, including the World Health Organization (WHO) and the Centers for Disease Control and Prevention (CDC), are sending phishing emails designed to trick recipients into clicking on a link or opening an attachment that downloads malware that steals the user’s credentials, such as usernames, credit card numbers, passwords, and other sensitive information usually stored in internet browsers.
App Scams: Scammers are also creating and manipulating mobile apps designed to track the spread of COVID-19 to insert malware that will compromise users’ devices and personal information.
Investment Scams: Scammers are offering online promotions on various platforms, including social media, claiming that the products or services of publicly traded companies can prevent, detect, or cure COVID-19, and that the stock of these companies will dramatically increase in value as a result.
Stimulus Check Scams: Scammers are contacting people over email and are telling them that their check, as part of the stimulus package responding to COVID-19, is already waiting for them and that all they need to do is to provide personal information, such as bank account numbers and Social Security Numbers, which are the key pieces of information needed to perpetrate identity theft.
Other scams include fraudsters claiming to work for the government or banks/credit cards and offering assistance for student loan relief, foreclosure or eviction relief, unemployment assistance, debt relief, and direct financial assistance, like government checks.

Anyone who believes they were a target or victim of fraud, or knows about any hoarding or price-gouging of critical medical supplies, is asked to report it to the National Center for Disaster Fraud Hotline at 1-866-720-5721 or disaster@leo.gov.

Crime Never Sleeps- COVID-19 Online Schemes & Insurance Fraud

Sadly, in times of crisis, some people use it as an opportunity to make money. COVID-19 is not an exception to that rule, and the FBI is already seeing a rise of Coronavirus fraud schemes. The FBI is warning Americans to be especially careful during this pandemic hitting our country. Always check your sources when receiving an unusual email. Do not click any links that appear suspicious.

Insurance Fraud

As business owners and employees are starting to learn what is covered under insurance and what is not covered, panic is setting in. Couple the fact that many people are out of work for an infinite amount of time, desperation can set in. People begin to do things for money that they never would have under normal conditions. We found this to be true in the beginning of the Great Recession.

According to to the FBI, “The total cost of insurance fraud (non-health insurance) is estimated to be more than $40 billion per year. That means Insurance Fraud costs the average U.S. family between $400 and $700 per year in the form of increased premiums.” This is something that affects all of us one way or another.

If past behaviors are an indicator, we know that we are most likely going to see a surge in insurance fraud. SIU Investigators are going to be overworked in the months ahead. A surge in slip and fall cases for example will occur. The claims are bound to pile up.

Online & Social Media Research

As a company who specializes in online research for fraud assessments, I can not emphasize enough how important it is to conduct your research as soon as possible. What is here today may be gone tomorrow . People will begin to clean up their social media posts.

If you think that Google and Facebook are all you need to check, you could run the risk of losing your client or employer a lot of money. When steaks are as high as this, a deep web search will serve you best. That is because people love to share online. They may leave crumbs that lead you to the exact place you need to be.

In conclusion, it is an excellent time to get in front of your insurance clients to let them know you are there and ready to go if and when we start seeing fraud increase over the next months.