Black Friday starts the season of ‘unmissable’ offers and discounts. A time when we are bombarded with deals that sometimes seem too good to be true. The sad truth is that this is also the time that cyber criminals and fraudsters are at their busiest as they try to take advantage of our human nature and part you from your hard-earned cash. How do they do it and what can you do about it? Let’s take a look.
Human Nature
In the same way that legitimate adverts and legitimate offers seek to exploit our human nature, those tricky fraudsters are using the same techniques but on steroids.
Time: Time is used to drive your behaviour. The simplest way is by only making offers available for a set time but to really drive your behaviour a scarcity of time must be used. Consider ‘act now’, ‘don’t miss out’, ‘must end soon’, ‘only for the next 12 hours’.
Curiosity: Curiosity is used to drive that click. Consider ‘you won’t believe what happened next’, ‘see why this deal shocked me’, ‘how this person beat the system’.
Greed: The most basic of all human nature and the need to save money. I do not say this in a negative way but to highlight and consider ‘save 50%’, ‘get a free gift worth over £500 when you buy’.
Key Tips to Stay Cyber-Safe This Black Friday
To safeguard yourself from cyber threats during this shopping season, consider the following tips:
1. Be Wary of Phishing Attempts:
- Scrutinise Emails: Carefully examine emails, especially those claiming to be from reputable retailers. Look for inconsistencies in the sender's address, grammar, and overall tone.
- Verify Links: Before clicking on any links within an email, hover your mouse over the link to reveal the actual URL. If it doesn't match the expected website, avoid clicking.
- Avoid Urgent Requests: Be cautious of urgent messages demanding immediate action, as cybercriminals often use this tactic to pressure victims into making hasty decisions.
2. Shop on Legitimate Websites:
- Stick to Trusted Retailers: Prioritise shopping on well-known and reputable online stores. Avoid unfamiliar websites, especially those offering suspiciously low prices.
- Check Website Security: Look for the HTTPS protocol in the website's URL, indicated by a padlock icon in your browser's address bar. This ensures that your connection to the website is encrypted.
- Beware of Fake Websites: Be aware of phishing websites that mimic legitimate online stores. Double-check the website's URL and look for any signs of poor design or unusual language.
3. Practice Strong Password Hygiene:
- Create Strong, Unique Passwords: Use a combination of uppercase and lowercase letters, numbers, and symbols for each of your online accounts.
- Avoid Reusing Passwords: Reusing passwords across multiple accounts can compromise your security. If one account is compromised, attackers can potentially access your other accounts.
- Consider a Password Manager: A password manager can help you generate, store, and manage complex passwords securely.
4. Be Cautious of Online Advertisements:
- Verify Deals: Before clicking on online advertisements, especially those on social media, verify the authenticity of the deal by visiting the retailer's official website.
- Avoid Clicking Suspicious Links: Avoid clicking on pop-up ads or links that promise unrealistic discounts or free products.
- Use Ad-Blockers: Consider using ad-blocking software to reduce exposure to malicious advertisements.
5. Keep Your Devices Updated:
- Install Security Updates: Regularly update your operating system, web browser, and other software to address security vulnerabilities.
- Use Anti-Virus Software: Employ a reliable antivirus program to protect your devices from malware and other threats.
By following these guidelines, you can significantly reduce the risk of falling victim to cyberattacks and enjoy a secure and hassle-free Black Friday shopping experience.
Author
Stuart Barker | Stuart is a cyber security expert, known as the ISO 27001 Ninja and author of the best-selling ISO 27001 Toolkit. He is Director at High Table the ISO 27001 Company: https://hightable.io