Here are the top three cyber scams to be particularly cautious about during the festive period:
1) Fake E-Commerce Websites and Phishing Scams
Scammers often set up fake websites that appear to be legitimate online stores or mimic well-known brands, offering deals that seem too good to be true. These sites often have URLs similar to real brand names but with subtle misspellings or extra characters. Unsuspecting shoppers who purchase from these sites end up with either counterfeit items, severely delayed shipments or no products at all.
Phishing Variation: Some scammers send phishing emails or texts (smishing) that mimic trusted brands, urging users to click on links for “exclusive deals,” account updates or shipping confirmations. These links often lead to fake login pages designed to steal account credentials or install malware on devices.
How to Avoid It: Check for secure URLs (https://) and carefully inspect the web address for any misspellings or inconsistencies. Only shop on well-known, reputable websites and be cautious of emails or texts from unknown senders. Look up deals directly on a brand’s official website rather than clicking on links.
2) Gift Card Scams
Scammers may impersonate friends, family members or even managers (in corporate environments) and ask the victim to buy gift cards, claiming they’ll reimburse the cost later. Common scams involve emails that look like they’re from a known contact, asking for “urgent” assistance with purchasing gift cards for holiday gifts or charity donations. The scammer then requests the codes on the back of the cards, which they can use to make purchases anonymously.
How to Avoid It: Always verify requests for gift cards, especially if the message seems rushed or out of character. Instead of replying directly to an email or text, contact the sender independently to confirm the request. It’s not a good idea to contact the sender via social media, since if their account has been hacked, it could be the hacker to whom you’re responding.
Be extra cautious of messages that seem too urgent or guilt-tripping.
3) Fake Shipping Notifications and Delivery Scams
With the surge in online shopping, scammers capitalise on shipping anxiety by sending fake tracking updates via email or text.
These messages claim that a package is delayed or undeliverable, prompting recipients to click a link to “resolve the issue.” The link typically directs them to a fake site that either requests personal information, payment to “release” the package or installs malware.
Some scam messages, which usually arrive as texts, say that a parcel is awaiting delivery but that there was a discrepancy in postage and to resolve that, the person receiving the text should click on a link to pay the balance of postage.
How to Avoid It: Avoid clicking on links in unsolicited shipping notifications. Instead, track your packages through official retailer sites or directly with delivery companies like Royal Mail, DPD or UPS by manually entering the tracking number. Be wary of any messages that request sensitive information or payment to resolve a delivery issue.
With vigilance and by following these precautions, you can better protect yourself from these common holiday cyber scams.