Scams

A swindle is an attempt to trick a player into giving their valuables and / or personal information to the perpetrator for any purpose that may be harmful to the victim. The main motive of the scam is personal gain, but in any case it is a malicious act.

Scams are considered a very widespread problem on Roblox. Administrators have tried to stop the most common scams by disabling comments on games, badges, and game passes. However, developers can still enable / disable comments on clothing, library assets, and UGC items. Also, games where item trading is prevalent like in Murder Mystery 2 and Adopt Me, as well as official Roblox player-to-player trading systems like the limited trading system, are very prone to scams.

Summary

• 1 Scam boats
• 2 How to avoid scams
• 3 Transaction scams
• 4 Phishing scams

Scam bots

Main article: Bots

Each filtering bag bots on Roblox they are bad for users, as these are "spam bots" that use different ways to steal your account.

Their methods to steal your account are as follows:

• They follow you to send you a false message saying that you won Robux and you have to enter that page (If the followers can send you messages).
• They also send you a friend request for the same purpose (send you the fake message).
• They also spam in comments or chat saying they won free robux on a certain page.
• These bots have the clothes of a "Noob" which is very easy to know that it is a bot, and (luckily) no one falls for this trick anymore, leaving the bots as garbage and a joke.

How to avoid scams

• When purchasing shirts, pants, or T-shirts, users are encouraged to search for [Removed Content] in the item description. This is an indicator that the item has violated the Roblox Terms of Service, so it is best to avoid purchasing them.
• If few or no users have purchased a VIP t-shirt or gamepass, users are encouraged to avoid purchasing it until more users have done so.
• If the item's comments are not disabled, read them to see if other users say whether the item is legitimate or not. Note that the perpetrator may have created alternate accounts (or hacked other accounts and turned those accounts into spam bots) to promote the scam, so look for accounts that claim to be a scam.
• To avoid falling victim to scam scams, check the scammer's inventory for stolen items. Additionally, a user can check if the total number of items in the seller's inventory is close enough to the total amount of "drawn" assets sold; Any large discrepancy in the total number of people attracted and assets sold suggests a portrait scam.
• Some scammers have their names listed in alternate account descriptions indicating that they are scammers. While this is not always the case, if there are a large number of these accounts, you have to be careful with this; try to avoid these users.
• Avoid programs and websites not created by Roblox developers that ask for login information. Similarly, avoid downloading unknown / unknown files (particularly .exe, .apk or .app programs) and never run any program with administrator privileges unless it can be verified as legitimate.
• If someone asks the user to send specific lines of code from their browser or client, they are strongly advised not to follow it, as certain code snippets may be used to enter the user's account, such as the ROBLOXSECURITY cookie.
• Avoid "free" comments from Premium and Robux. Roblox does not promote free shortcuts to paid services.
• Avoid YouTube videos that ask players to subscribe to get free Robux. These are always fake and often made to get subscribers. The same can be said for Twitter accounts that claim to do so as well.
• Avoid any game that uses the name "Robux", "Robucks" or something similar, and has the Roblox logo or Robux icon as an image, especially if they have more players "playing" than "visits"; these places are probably scams.
• In general, if something seems too good to be true, it most likely is. Users are encouraged not to allow their personal wishes to be easily manipulated, as most scammers often rely on victims to make impulsive decisions after seeing or hearing something they want.

Transaction scams

• The following are common scams that involve Robux, through some form of transaction on the site, although they do not involve phishing. These types of scams often cause the victim to lose substantial amounts of Robux.
• Classic fraud: the perpetrator advertises a service or product for a fixed fee, usually sold through t-shirts.
  • T-Shirt Scams: Perpetrator posts a T-shirt with a name like "Admin for Reason 2 Die" or "Mod for Twisted Murderer." Often sold at a low price (rarely more than 500 Robux), these jerseys advertise some kind of privilege or service in a popular game. These jerseys do not meet their advertised service. Since then, this trend has waned due to the launch of the Game Pass system, which eliminated the need for game creators to distribute additional gaming privileges through VIP shirts.
  • Drawn portrait scam - A common example of a scam, the perpetrator posts a series of advertisements on the site and advertises that the victim can be "drawn" for a flat fee by purchasing an item. Once the victim purchases the item, the perpetrator refuses to proceed with the drawing and may block the victim to prevent further contact. Many of these items have been removed by the moderators, although some can still be found on the website. Since then, this scam has subsided as moderators continue to remove these items from the catalog.
  • Fake Game Passes - The perpetrator sells a game pass that announces special in-game features to the player. However, the promised features just don't happen once the user purchases the game pass. These types of scams were commonly used by jaredvaldez4.
  • "Invisible" T-Shirt Scam - A user posts an ad claiming that a certain item of clothing will make the player's avatar invisible. Instead, the clothing is simply see-through, which doesn't create an invisible avatar. If a preview is not seen in the article catalog, the author may claim that the image is "broken" when in fact the image has been rejected by the moderators.
• 10% Savings Scam - The perpetrator will tell players to visit their game, claiming that buying any item from their game will save the player 10%. However, buying into those games will, in fact, give the game owner, the perpetrator, 10% of the price, and they will still have to pay the full price. If you want to make a set with 10% savings, make a quick free model purchase, enter the ID you want.
• Color-Changing T-Shirt Scam - Similar to the "invisible" T-shirt scam, a user posts clothing claiming it is a GIF and changes color in any game. However, the clothing is simply nothing, so it is not uploaded online. There are videos claiming that the clothes work, which were edited using a green screen and some errors can be seen in some moments. This scam should not be confused with clothing that is partially see-through and changes color based on the avatar's skin color.
• Gamepass Administrator Scam - This type of scam is often seen in RPGs. Usually the victim will be fooled into thinking that the purchase of the gamepass will allow them to use many management commands from an in-game command script. Actually, the gamepass will only grant a limited number of commands that can only be used on the victim, which are also called VIP Admin. These gamepasses usually get a lot of upsets.
• Cheaper Gaming Products Scam - The perpetrator sells game passes that promise a generally valuable product in another game at a cheaper Robux price, such as a ride-and-fly neon legendary pet in Adopt Me !. Often these games are not connected to the other game and therefore give nothing, wasting the buyer's Robux.

Phishing scams

These scams take place when a user submits their confidential information to a seemingly legitimate service, only to receive malicious results. Damage ranges from Robux loss to account loss to malware infections. Phishing scams are very common and are often aimed at new or young users who have not made purchases on their account, as many players want Robux and Premium, but they cost money that they may not want to spend or cannot. to pay.

In most cases, once a user is a victim of phishing, their account is added to a botnet that the thief uses to spread more scams. This, in turn, can result in the termination of the victim's account if they are reported for spreading these scams.

If Roblox + is enabled, when heading to a site, extension, etc. known phishing, the extension will automatically close the tab with the phishing URL.

Login information through Roblox messages: The scammer sends a message to a user and asks for their username and password in exchange for Robux or services, such as Premium. This can result in the loss of the account. In 2016, this scam became more common and was often done by messaging the player while playing on the cover. After the victim is scammed, the scammer uses the victim's account to scam others.

• Fearmongering - The scammer, posing as an official Roblox partner, sends a message to a user and asks if they are the rightful owner of their account, citing an apparent increase in the value of the user's account and claiming that they have already sent a message to another user who was unable to provide 'proof' and their account was terminated. If the user ends up giving an explanation, the scammer will ask you to contact him on an external program or URL, after which the end result would be spoofing or hijacking of the victim's account. Usually this happens because the scammer asks the victim to send an image of their password reset email with the link visible, or they are asked to use Inspect Element to extract their .ROBLOSECURITY cookie and send it to the scammer. This scam is primarily aimed at users who have a high average value of limited items in their inventory.
• Friend Request Login Information: The scammer follows you and sends a friend request to the user with usernames that persuades the user to click on their profile. The perpetrator's profile description contains an external link that will ask the victim to enter their login information, usually for a Premium or Robux 'reward'. This scam is more effective than Roblox messages alone, as users can limit the number of people who can message them.
• Email Login Information - Scammer leaves comments asking users to provide account information to an email address, listing bogus reasons that may seem compelling to a novice Roblox user.
• Login information via exploits: The scammer leaves comments that direct users to a link that provides an exploit tool for the Roblox client, which will then ask for login information.
• Malicious Programs - The perpetrator directs users to a link that downloads an executable program (.exe or .app on Mac), often advertised as "hacks" or "exploits" on the user's computer. When run, the program injects malicious code into the system to gain information and provide complete control of the user's desktop. This not only compromises a user's Roblox account, but their entire computer as well. This can include banking information, multiple passwords, document information, and can destroy your Windows installation. Antivirus programs, such as Avast and Bitdefender, will attempt to quarantine the executable program that a user has downloaded. Users should never download files (especially .exe files) from unknown sources.
  • Recent executable files are also known to record .ROBLOSECURITY cookies. Because the program only takes cookies and directs them to a webhook, anti-virus applications do not find their malicious intent, resulting in frequent theft and sale of accounts.
• .ROBLOSECURITY scam: The perpetrator convinces the user that the .ROBLOSECURITY cookie should be delivered.
• AuthTicket scam - Similar to the .ROBLOSECURITY scam, the perpetrator gains access to a user's AuthTicket, necessary to join games and authenticate their user. If they got this, they could join games under a player's username with a simple batch command and purchase in-game purchases without their knowledge. ROBLOX +, a Google Chrome extension, warns players when they enter the AuthTicket link.
• Fake websites - These fake websites have a very realistic looking login form and domain name that is fake and pretends to offer a bogus reward that needs to be posted on various games. This only steals a user's login information and promotes the scam using the stolen account.
• Fake browser extensions: After Roblox disabled comments on games and items, attackers created fake extensions that appear legitimate, but after installing them they steal a player's .ROBLOSECURITY cookie and their AuthTicket, and the extension will post the information in a web server or chat channel.
• Botted Roblox Places - A Roblox place that tells the user to go to an external link that says to give Robux or Premium for free, equipped with bots by the thousands to make the game appear on the main page and sometimes like botting . These games are generally removed very quickly.
• Roblox Related Ads - These ads promise things like Free Robux or Premium. They can redirect to another YouTube channel or a phishing site.

  

• Login information via chat: what it means is that a bot sends the friend request to the player. If accepted, they will say fraudulent messages. An example of this (note that it was actually censored due to the Roblox filter)
• Group Wall Post Scams: In some groups where the group wall is not actually active, scam bots will attack the wall with scams.

• A user receives messages from friends or other random users saying "hey, if you use the code" (fake code) "on (scam website), you get a (valuable item) for free". When visiting the site, users are shown a login screen similar to that of the official Roblox login site. If the user enters their username and password, their account will soon be hijacked and looted for their Robux and / or limited items. It will also be used to further spread the scam.
• Guilt Scam - Commonly Occurs on Big Discord Servers with RoVer. They will pick a random person from the server who has their Roblox name as their nickname because of RoVer, then they will say that they lost that friend by accidentally deleting them, and then they will claim that the account was hacked. Once the user befriends Discord, they join a game. The scammer tricks the victim by pretending that they enter the website and randomly disconnect. They then claim they were the victims of an account trading scam. They then blame the user for giving them their "share account" password. They claim they won't touch anything. Once the victim gives their password through Discord, the scammer unfriends them and steals the account. These scams can last up to 3 hours!
• Youtube Channel Name Scam: Found on YouTube. A channel, usually titled as: "Hi, this is [name] if you don't mind watching my video" comments on a page. Most of these fraudulent channels were created in 2006, which clearly indicates that they were hijacked. Those channels have only one video, which is phishing, as you may have already guessed.
• .HAR file scam - The scammer would contact someone (usually via Discord) to convince the user to create a .HAR file in order for the Roblox website to do something for the scammer. Actually, the HAR file created for the website contains all the user's cookies and allows the scammer to access the account through the user's .ROBLOSECURITY cookie.
• I'm making a GFX game / scam - This scam is where your friend or a previous account will send you a message saying "hi buddy. I'm making a game and I want to put your avatar on it, can you send me a sticker of your character?" If you text your character sticker link to them, the scammer will use that link to hack into your account. The scam uses some form of javascript to access the victim's account. This became very popular in 2020. There is another version of this that asks for the same thing, but the message is about a GFX.

❗️Don't click on third-party websites that promise Robux. These usually ask you for your account password or inject viruses into your computer.