Many of us dread Christmas shopping. The pandemic forced us to move our entire lives online, and while that helps avoid crowded malls and long lines, a new set of problems takes their place. Cybercrime is on the rise this year, and with internet users flooding online shops searching for the perfect gift, stealing their money and data is like shooting fish in a barrel.
Jan 02, 2021 · 5 min read
If you’re getting gifts for friends, family, and you’re someone’s Secret Santa at work, chances are you’ll be receiving packages almost every day. It’s easy to lose track if you’re expecting a bunch of them to arrive. Even delivery services are struggling with the workload during the pandemic. In the chaos of the holiday season, it’s easy to lose track of your mail.
That’s why it’s no surprise that a bunch of Royal Mail customers recently gave away their credit card details to scammers. They received fake emails claiming that there were undelivered packages waiting for them. To redeliver it, all they had to do was pay £1.99. A lot of people did, losing their credit card details to scammers in the process.
A similar phishing attack has been around for years, but a lot of people still fall for it. Scammers send out text messages saying that there’s a DPD delivery waiting for you. It might offer to track your package or ask you to confirm delivery details. Whatever the text says, it also includes a link. Most people tap on it without a second thought and are immediately taken to either a malicious website that infects their device with malware or a fake website where they have to enter their account credentials or fill in their credit card details.
Delivery scams aside, shopping online can be dangerous by itself – if you don’t know how to browse the internet safely. From fake confirmation emails to scammy deals and hacked online shops – there are a lot of things that can go wrong.
If you use unsecured Wi-Fi, someone could intercept your connection and perform a man-in-the-middle attack. They then would be able to watch your every move and collect information about you – like your credit card details, passwords, address, and phone number. They could also manipulate your traffic so you wouldn’t notice anything for a while, giving the cybercriminal enough time to come up with more tricks or steal more of your money.
Another thing to look out for is bait and switch scams. It’s easy to fall for too-good-to-be-true prices, especially during Christmas time, when we spend so much money on gifts. With bait and switch scams, the best-case scenario is that you’ll end up with a cheap knock-off of whatever you were buying. However, if you took the bait and clicked on that flashy banner, you might also end up with malware on your device. It might just bombard you with annoying ads, but it can also spy on you, secretly gather your data, and send it to a remote user.
You have to be aware not only of online but also offline scams. Packages you receive often contain your name, address, email, and telephone number. If scammers find a discarded package with sensitive information in a dumpster, they can use it for a targeted online attack.
During the holiday season, delivery companies hire extra staff to handle the increased workload. Cybersecurity experts warn people to stay cautious, as some job offers can be fake. Perpetrators might impersonate recognized businesses and trick you into revealing your personal details.
Every Christmas, all kinds of pyramid schemes begin to circulate on the internet. One such scheme is the Secret Sister. The scammers behind it claim you need to send one gift to a stranger to receive six gifts back. Usually, they target women interested in a pre-holiday gift exchange. However, after you have sent your gift, most likely you won’t get anything in return.
It might sound like a minefield out there, but if you take the necessary precautions and develop some good habits, staying safe online is easy. Even in the middle of Christmas shopping chaos during a pandemic. Here are some useful tips:
Secure your holiday shopping with NordVPN.