Black Friday cybersecurity alert: Protecting your wallet and data

Black Friday, the annual shopping extravaganza, is just around the corner, promising irresistible deals and discounts. However, while shoppers gear up to snag bargains, cybercriminals are busy preparing to exploit this high-traffic shopping season. Cybersecurity experts warn that online fraud risks spike during this time, and real-world incidents prove just how vulnerable shoppers can be.

Real-World Example 1: The Fake Retailer Trap

Last year, thousands of shoppers fell victim to a fraudulent website mimicking a popular clothing retailer. The site, complete with realistic branding and fake customer reviews, offered “unbeatable” discounts on high-end jackets. Unsuspecting customers entered payment details only to discover that their orders never arrived, and their credit card information had been stolen. The website disappeared just days after Black Friday, leaving victims scrambling to recover funds.

2022 retail website determined to be a scam

Lesson: Always verify the authenticity of a website before entering payment details. Look for secure connections (https://) and double-check URLs for slight misspellings or discrepancies.

Real-World Example 2: Phishing Email Campaign 

A 2019 Black Friday phishing campaign targeted thousands of Amazon customers with emails claiming that their orders couldn’t be processed. The email urged recipients to click on a link to update their payment details. Once clicked, users were redirected to a fake Amazon login page, where hackers harvested their credentials. Many victims later found unauthorized purchases made on their accounts.

Example of an Amazon-branded phishing attack from 2019

Lesson: Avoid clicking on links in unsolicited emails. If you receive a suspicious message, log in directly to your account through the official website or app to verify the claim.

Real-World Example 3: Public Wi-Fi Exploits

During the 2021 holiday shopping season, several shoppers at a popular mall connected to public Wi-Fi to make quick online purchases. Hackers on the same network used packet-sniffing tools to intercept sensitive information, including credit card details and login credentials. This type of attack is known as eavesdropping, sniffing, or snooping. The victims only realized the breach after noticing unauthorized transactions on their bank statements. 

Illustration showing the basic components of an eavesdropping attack

Lesson: Never shop or enter sensitive information while connected to public Wi-Fi. Use a virtual private network (VPN) for secure browsing.

How to Stay Safe This Shopping Season 

Protecting yourself from fraud during Black Friday requires vigilance. Here are some tips to shop securely:

1. Verify website authenticity

• Check the website URL for a padlock symbol and ensure it begins with "https://."

• Avoid clicking on links in unsolicited emails. Instead, navigate to the retailer’s official website directly.

2. Use strong, unique passwords

• Don’t reuse passwords across accounts. Use a password manager to generate and store complex passwords.

3. Enable strong authentication

• Add an extra layer of security by enabling two-factor authentication (2FA) or multi-factor authentication (MFA) on your accounts.

4. Be wary of unrealistic deals

• Deals that seem too good to be true often are. Verify discounts through trusted platforms.

5. Monitor your financial accounts

• Regularly check your bank and credit card statements for suspicious transactions. Report any unauthorized activity immediately.

6. Secure your internet connection

• Avoid shopping on public Wi-Fi networks. Use a VPN for added security.

The Bottom Line 

Black Friday offers exciting opportunities for savings, but it’s also a prime time for cybercriminals. By learning from real-world cases and following best practices, you can shop with confidence without falling victim to fraud.

Stay Ahead of Scammers This Black Friday! 

Share these real-world examples and tips with friends and family to keep everyone safe. For more expert advice and updates, subscribe to our newsletter or follow us on social media. Together, we can outsmart the hackers and enjoy a secure shopping season.