It’s predicted there will not so much be a ‘Black Friday’ but ‘Black Thursday to Monday’ (Thursday 23rd November – Monday 27th November.) Whilst this is great news for shoppers looking for a bargain, cybercriminals will also have a much bigger window to con bargain hunters.
When analysing data from last year’s seasonal sales, Kaspersky Lab’s protection technologies detected a clear spike in the number of users attacked during this period – for instance, in 2016, Cyber Monday had twice as many users attacked compared to the previous day. According to research, internet usage on mobile phones is growing year on year, yet only 53 per cent of people protect themselves with internet security, compared with 88 per cent protecting PC’s and laptops. This figure becomes even more terrifying when you consider that 71 per cent of people use insecure public Wi–Fi in public places for all manner of activities, including shopping, banking and financial transactions.
Then the methods used by cybercriminals are growing and changing by the day so, now more than ever, it is crucial that consumers are aware of the threats and remain vigilant. Some of the most common methods of defrauding shoppers currently include: fake websites, either with no ‘S’ in HTTPS, fake ‘https’ (a padlock image but not in address bar) or a URL that looks like a legitimate one (e.g. ‘amazon.com’); phishing emails with malicious links, particularly with offers that sound too good to be true at this time of year; pop up adds purporting to be genuine adverts; fake items for sale on genuine sites and ‘sniffing’ for passwords and payment details over unsecured Wi-Fi.
‘During normal periods, banks rely on algorithms to alert them to unusual patterns of spending on customers’ accounts. However, during periods like Black Friday/Cyber Monday, this becomes much more difficult to monitor. Banks do not want to limit spending at this key time, but the reality is that people are spending way outside their usual habits, and above their usual thresholds. All this creates the perfect environment for cybercriminals to execute their malicious activities and cash in, before customers or banks realise and act,’ says Principal Security Researcher David Emm at Kaspersky Lab.
‘When we then consider the further complication that retailers are expecting this year to be the tipping point in terms of mobile transactions, which are often made through unsecured Wi-Fi and on unprotected devices, it’s more important than ever that shoppers think before they shop. We advise shoppers to follow these 12 tips this Black Friday period:
- Secure your all devices using Internet security software.
- Make sure you apply security updates to your operating system and applications as soon as they are available.
- Only use secure sites. Look for a URL beginning with ‘HTTPS://’ – that’s ‘S’ for SECURE. Look also for a closed padlock on the web browser’s address bar – by clicking or double-clicking on it you will be able to see details of the site’s security.
- Use a unique password for every online site – use a mixture of letters, numbers and special characters and make sure they’re at least 15 characters long. Here are some tips to help you.
- Don’t click on random links in e-mails – it’s better to type in a URL yourself, to avoid the risk of ending up on a phishing site. If a deal seems too good to resist, go directly to the website to find it, rather than click on the link, to be sure.
- Try to stick to familiar sites that you know or have heard of. But even then you need to take care – criminals often deliberately misspell the name of their fake websites to make it look like a familiar site.
- If you do buy from a new vendor, research it carefully. A good test is to see if they can be contacted if the order goes wrong – look for an e-mail, a phone number, an address and a returns policy. A vendor’s feedback history is another good sign of their honesty and reliability.
- Use extra caution when using your mobile device for online purchases. Shortened URLs, often used because they are phone-friendly, can hide the fact that they lead to a risky site. If you have to mau tke a transaction then and there, switch Wi-Fi off and use mobile data. Otherwise wait until you are back on a secured connection.
- Avoid using untrusted public Wi-Fi hotspots for confidential transactions like online shopping – public Wi-Fi networks are common places for hackers to sneakily intercept your information.
- Ensure that your children do not have access to your online accounts, and make sure they can’t access to your credit card and bank information
- Backup your data regularly to a CD, DVD, or external USB drive to avoid your personal files being lost if you are the target of a cyberattack.
- Keep checking your accounts regularly to make sure you notice any unusual/fraudulent activity straight away.