Despite it being the ‘season of goodwill’ did you know that cybercrime increases by a shocking 30% over the Christmas period?1 Unlike the Christmas movies, the baddies often walk away unpunished, with many cybercrime cases unreported and of those which are, the criminals are usually tricky to track down.
Throughout November and December of 2023 alone, Brits lost over £11.5 million through cyber scams.2 Black Friday is also a driver for this and is increasingly being referred to as ‘Black Fraud Day’. So, what can you do to stay safe this season? Here are some of the most common tactics cybercriminals use to steal your money and what you can do to avoid them at all costs.
Phishing and fake websites
Of all the fraudulent activity online, phishing scams are by far the most common. This is when cybercriminals use fake emails, texts or phone calls which either leads them to a fraudulent website or downloads malware onto their device.
Some of the most popular phishing emails are delivery and shipping notifications. These often display a sense of urgency, encouraging you to take immediate action to ensure you get your parcel on time. These are particularly prominent around this time of the year as we’re used to getting so many notifications at this time and it’s not always clear which courier is due at what time.
To avoid getting caught out by phishing scams, think before you click. Remain vigilant and look out for any suspicious red flags such as bad grammar, a sense of urgency, unfamiliar greetings, inconsistencies in email addresses and requests for sensitive data. If you’re not sure, avoid clicking on any direct links. Keep track of what you’ve bought online and always return to the original tracking information – this will let you know the parcel’s current location.3
Social media and WhatsApp
When friends share links via social media or chat sites, you’re more likely to trust that link as it comes through a reliable source. Unfortunately, just because a friend shared it doesn’t make it legitimate and sometimes, your friend’s account may have been compromised and they’re not the one communicating with you at all. You may also be targeted by offers through adverts on Facebook, Instagram and TikTok, all with deals that look too good to be true. Often, these items never arrive or an inferior item is sent, with no option for a refund.
To avoid these types of scams, do not click on any links. Instead, ask for the name of the item or the shop and search for it directly. If you see an offer that looks too good to be true, it probably is. Check the company through websites like TrustPilot to see their customer reviews. Ensure that you always pay using a credit card. If you have bought something and then considered it may be a scam, contact your bank immediately and they will support you through the next steps. 4
Charity phishing scams
Sometimes, you think cybercriminals can’t stoop any lower, and then they set up a fake charity website and reap all the donations. They not only impersonate legitimate charities that are already established but also use social media to encourage people to donate to sick children, with all the profits going directly into their pockets.
To avoid these scams, verify UK charities before you donate. If you want to donate to an overseas charity, you can verify these through the Charities Aid Foundation (CAF) first, which will confirm the charity is legitimate before making your donation.
Gift card scams
If a friend asked you for a gift card for their sick niece but they’re struggling with the transaction, would you oblige? Change of plan. Your friend then asks you to scratch off the panel and send over a photo of the code so they can buy something for her directly from the shop. Sound legit? Scammers are now playing into people’s kindness and willingness to help by creating emotional and time-critical situations where a gift card is the only way to solve their problem. They then sell the gift card details, making their involvement difficult to trace.
Sometimes the person you think you’re speaking to isn’t the person you’re actually in contact with. The best course of action in that case is to call your friend directly, confirm their identity, and ask them to verify it’s really them. Ask questions that only they will know. In most instances, if you’re being asked to buy a gift card with urgency – it’s a clear red flag and you should act with caution.
Some indicators to watch out for include an unusual sense of urgency, words or language that your friend wouldn’t usually use and emotional manipulation.
Cybercriminals are also targeting people using fake gift e-gift cards sent by friends via email. If you’re not expecting this, speak directly with the friend first before you open or click on any links.5
Staying safe online
Cybercriminals never sit still and there’s little that they won’t do to make some quick money. Despite knowing these types of attacks exist, the financial impact on those affected by cybercrime continues to increase year on year.6 Here are some key takeaways to help keep you safe:
- Think before you click
- Don’t rush into anything – sit back and take five minutes before taking action
- If a deal looks too good to be true, it probably is
- Never send money directly to someone you don’t know or trust
- Use credit cards or trusted payment sites like PayPal for purchases
- Never give away your banking details to someone you don’t know or trust
- If you’re being rushed, step back and think about why
- Always try to access websites directly rather than through third-party links
- Report scams as soon as you see them
- If you think you’ve been scammed, get in touch with your bank straight away.
Contact us on 01564 730 900 for any cyber insurance enquiries or to ensure you’re fully protected this festive season.
Sources
4 https://www.techrepublic.com/article/black-friday-uk-scam/
5https://www.metacompliance.com/blog/cyber-security-awareness/top-5-christmas-cyber-scams