The holiday season sees a big jump in phishing scams; scammers know we are busy and are spending money, so it makes sense that they are more active at this time of year. To help you avoid becoming a victim this holiday season – we’re sharing our 12 scams of Phishmas, so you know what to look out for.
1st Scam: An offer that’s too good to be true
We all like a bargain, especially at this time of the year, but as the saying goes, if it seems too good to be true, it probably is! Be especially wary of tempting offers made via social media.
2nd Scam: An urgent request
An urgent message is one of the biggest red flags there is for phishing. When your emotions are heightened, it’s hard to make good decisions. Take a deep breath and verify before taking action. A few seconds of caution could save you from weeks, months or even years of heartache!
3rd Scam: Attempt at credential theft
Credentials, otherwise known as your username and password, can be just as big a target for attackers as your credit card details. With your credentials, attackers can potentially get access to far more than just a single account, or they can simply make money selling your details on the dark web. These are some of the reasons why credential theft is trending as a top attack vector in the world of phishing. Do not enter your credentials into untrusted links from emails or other messaging apps! If you need to access your account, go directly to the legitimate site by typing the address in your browser.
4th Scam: Fake message from your manager
This is another type of scam that relies on emotions. We all tend to view requests from our managers as top priorities. Always verify directly with your manager if you get an unexpected request; whether it’s buying gift cards, sending money, or opening a file. If you just started a new role, be particularly cautious. Scammers may have seen your LinkedIn updates, so know you are new and won’t be as familiar with internal processes.
5th Scam: Dodgy URLs
It’s easy to hide malicious links behind a genuine looking one. Always hover over the links to check them – do not trust the link that is written on the page! If in doubt go directly to the site by entering the URL you know is correct into the browser.
6th Scam: An email with some ransomware
Do not download an attachment unless you are expecting it and you know and trust the source. There is no way of telling what is inside the file you are about to download – even innocent looking files can hide malicious code, including ransomware. Don’t forget you can also get ransomware by clicking on malicious links.
7th Scam: Personal info request
Requests for personal information or confirmation of payment details should always raise alarm bells. As for the other scams we’ve looked at, go direct to the source if you think it may be genuine.
8th Scam: Request to send money
Requests for money or payment are a perennial favorite of scammers because they work. Scammers often research their targets to make their requests sound more legitimate or will hijack existing email threads. The key here is to always verify before sending money.
9th Scam: Fake Charity Appeal
Tis the season for giving and scammers will take advantage of that. Always verify that you are donating to a genuine charity before handing over money.
10th Scam: Delivery notification
At this time of year, we are likely to get more deliveries and it can be hard to tell the real delivery notifications from the fake ones. Go direct to the company’s site to be sure.
11th Scam: Conversation hijacking
This scam can be difficult to spot – the attacker gets their hands on an old email chain and replies to it, making it look legitimate. Be wary of email threads from a while ago that suddenly spring back to life. Check out this article to learn more.
12th Scam: Gift Cards
When you see gift cards in a message you should be on high alert. They can be used as a lure to make you click on a link, download a file or share your details. Scammers also use them to get you to hand over your cash in a way that means they can’t be traced. If someone asks you to buy gift cards, and you aren’t expecting it, make sure to verify first and it is okay to refuse to help.
