top of page

Don't allow Black Friday scammers to darken your door

As Black Friday shopping has moved online, so have cybercriminals, who take advantage of the high volume of shoppers and online transactions. Here, we look at ways to stay safe online during the Black Friday bedlam.



Black Friday, traditionally the day following Thanksgiving in the United States, has become synonymous with large discounts and massive shopping events. It’s no longer limited to in-store shopping; online sales have become a huge part of Black Friday, offering steep discounts on electronics, clothing, and more.


However, cybercriminals will attempt to take advantage of the high volume of shoppers and online transactions. This blog explores the cyber threats associated with Black Friday and offers essential tips on how consumers can protect themselves from scams.


What Is Black Friday?


Originating in the United States, Black Friday marks the start of the holiday shopping season and is now recognised worldwide. Retailers slash prices on various items to attract shoppers, both in-store and online, with sales often starting as early as November 1st.


The sales frenzy has grown over the years, especially online, where Cyber Monday, the Monday following Black Friday, now offers its own set of deals and discounts.


Black Friday shopping, both in physical stores and online, is popular because of the considerable discounts and promotions. However, the appeal of deals also attracts another group - cybercriminals, eager to exploit the rush and the frenzy. Scams, phishing attacks, and other cyber threats rise significantly during this period, targeting unsuspecting shoppers.


Common cyber threats during Black Friday


With the increase in online shopping during Black Friday 'season', here are the primary cyber threats that consumers should watch out for:


1. Phishing Scams


Phishing scams are among the most common threats during the Black Friday season. Cybercriminals send out fake emails that appear to be from legitimate retailers, luring people into clicking on malicious links. These emails often contain fake promotions, claiming that "your favorite store is having a sale!" When clicked, these links may lead to fraudulent websites that ask for personal or financial information, or they may install malware on the user’s device.


2. Fake Websites and Pop-Up Ads


Fake websites, designed to look like legitimate retailer sites, pop up around Black Friday. These fake websites might mimic popular stores, offering deals that seem too good to be true to lure customers into entering their payment information.


Additionally, pop-up ads may appear with sensational discounts but redirect users to fraudulent sites where their personal information can be compromised.


3. Social Media Scams


Social media is another popular platform for scammers. Fake profiles and accounts might advertise unbelievable deals, often shared widely by excited shoppers. Once users click the links, they are redirected to fake shopping websites or phishing sites. Some scammers even use paid ads to make their fake sites seem more legitimate.


4. Malware and Ransomware


During Black Friday, cybercriminals may use malware and ransomware as part of their tactics. Malware may be delivered through email attachments, malicious ads, or fake app downloads, while ransomware can lock a user's device until a ransom is paid. Both are designed to gain access to personal and financial data.


5. Fake Apps


In recent years, fake shopping apps have been on the rise, especially around Black Friday. These apps may appear in legitimate app stores, mimicking popular brands, and offer "exclusive deals" for Black Friday. Once downloaded, these apps can steal data or infect devices with malware.



Tips to Stay Safe from Black Friday Scams


Here are some essential tips to help you enjoy Black Friday deals while protecting yourself from cyber threats.


1. Verify Websites and Email Links


Always check the website URL before making a purchase to ensure it’s legitimate. Look for the "https://" in the URL and avoid sites that only display "http://."


Don’t click on links in emails unless you’re certain they’re from the actual retailer. Visit the retailer’s website directly rather than using a link in an email to navigate there.


2. Use Secure Payment Methods


Credit cards offer better protection against fraud compared to debit cards, so use a credit card if possible.


Consider using a digital wallet service like PayPal, Apple Pay, or Google Pay, which provide added security layers by not exposing your credit card information directly to the merchant.


3. Be Wary of Unbelievable Deals


If a deal looks too good to be true, it probably is. Scammers often lure customers with deals that are much lower than what legitimate retailers offer. Do your research and compare prices to avoid falling for these traps.


4. Use Strong, Unique Passwords and Two-Factor Authentication (2FA)


Protect your shopping accounts with strong passwords and enable two-factor authentication when possible. This adds an extra layer of security, especially for online shopping accounts where your credit card or banking information might be stored.


5. Avoid Public Wi-Fi for Shopping


Public Wi-Fi networks are often unsecure, making it easy for cybercriminals to intercept your data. Avoid making purchases or entering personal information over public Wi-Fi. If you must use it, use a VPN (Virtual Private Network) to add an extra layer of security.


6. Use Reliable Security Software


Keep your devices protected with up-to-date security software that includes antivirus, anti-malware, and anti-phishing protection. Many security programs can help detect phishing emails, malware, and fake websites.


7. Check Bank Statements Regularly


After shopping, regularly monitor your bank and credit card statements for any unauthorised transactions. If you spot anything suspicious, report it to your bank immediately. Early detection can help prevent larger financial losses.


8. Stick to Official App Stores for Shopping Apps


Avoid downloading apps from unofficial sources. Stick to Apple’s App Store or Google Play Store, as these platforms have more robust measures in place to detect and remove fake or malicious apps.


Conclusion


Black Friday can be an exciting time to snag deals and start holiday shopping, but it’s also a prime time for cybercriminals to strike.


By understanding the common cyber threats associated with this shopping period and implementing simple cyber security practices, consumers can shop more securely and enjoy the sales with peace of mind.


Protecting yourself from scams doesn’t have to be complicated; it just requires a bit of vigilance and caution. Happy (and safe) shopping!


 

Reporting

Report all Fraud and Cybercrime to Action Fraud by calling 0300 123 2040 or online. Forward suspicious emails to report@phishing.gov.uk. Report SMS scams by forwarding the original message to 7726 (spells SPAM on the keypad).

 

Comments


The contents of blog posts on this website are provided for general information only and are not intended to replace specific professional advice relevant to your situation. The intention of East Midlands Cyber Resilience Centre (EMCRC) is to encourage cyber resilience by raising issues and disseminating information on the experiences and initiatives of others. Articles on the website cannot by their nature be comprehensive and may not reflect most recent legislation, practice, or application to your circumstances. EMCRC provides affordable services and Trusted Partners if you need specific support. For specific questions please contact us by email.

 

EMCRC does not accept any responsibility for any loss which may arise from reliance on information or materials published on this blog. EMCRC is not responsible for the content of external internet sites that link to this site or which are linked from it.

bottom of page