Money Credit and You© Latest News and Information

Cyberscammers Attack Black Friday and Cyber Monday Consumers

November 27, 2013

Unlock Your Wealth Fraud AlertCyber Scam Alert- Cyber Monday and Black Friday consumers are warned about Cyber Scammers this upcoming Holiday weekend. Cybercriminal are most attracted to consumers shopping via social media and mobile devices. Emails are filling up inboxes and social media posts are being tainted to web links filled with worthless products and scammed sales pitches.

“All these things have something in common: social engineering and greed,” says Sorin Mustaca, security analyst at anti-malware firm Avira.

One in every ten recipients of the holiday-themed phishing lures to click on a faulted link, which might ask the shopper for personal information on a bogus form to fill out. These forms, and scams have been planned by cybercriminals all years just waiting for this day and your money to be in their hands. Be on the lookout for fake delivery confirmations from FedEx, UPS, DHL, Amazon, eBay, Wal-Mart, Target and ToysRUS, which have all had victims of being scammed.

The simple click of an enclosed link will turn your computer over to the attacker.  According to David Knight, Proofpoint executive vice president, “We’re human; we’re compelled to click, and we’re even more human during the holiday season.” The best advice is to buy and open all links that are one secured sites. When in doubt, call or chat with an online representative to verify unknown links and purchases.

Phishing attacks – faked e-mail carrying tainted web links – are expected to spike in coming weeks, purporting to come from shipping companies, says Bob Pratt, vice president of product management at anti-phishing company Agari.

Agari’s analysis of billions of e-mail messages shows faked shipping company e-mails increased 62% in the third quarter, versus the second quarter. Based on historical patterns, the volume of faked shipping company e-mail messages can be expected to double in the final months of 2013, compared to the third quarter, because “there’s a lot more cover for bad guys to take advantage,” Pratt says.

Holiday shopping has come to mean fielding recommendations from our Facebook friends and Twitter followers, and using our smartphones and touch tablets to hunt for bargains and make purchases. That all translates into a gift-wrapped bonanza for the bad guys.

“We tend to trust our mobile devices because nobody else can touch it,” says Daniel Cohen, RSA cybersecurity strategist. “But our hyper-connectivity, together with a small screen, make it easier for fraudsters to come at us.”

And the cyberscammers are coming, drawn like zombies to live flesh. Identity verification firm Signifyd dissected 10 million transactions made on computing devices in the past six months and found 25% of retail traffic coming from mobile devices. Of that grouping, 10% originated from tablets, 14% from smartphones.

At the moment, smartphones are the least secure purchasing platform. Signifyd discovered that 1.3% of e-commerce sales on phones are fraudulent, compared with just 0.8% for sales via desktops and 0.5% from tablets.

“Companies are trying to get the mobile experience to be as frictionless as possible, so they’re putting less checks at the point of checkout to give the customer that terrific experience,” says Rajesh Ramanand, Signifyd’s chief executive. “Fraudsters are finding ways to exploit this hole.”

Consumers should use robust passwords, pay close attention to where sensitive information gets stored and patronize only trusted Web properties. And a healthy dose of holiday skepticism also is in order.

“It’s OK to be a little paranoid,” says Ronnie Flathers, of security consultancy Neohapsis. “Modern phishing techniques are subtle and dangerous. It’s OK to mistrust e-mail and links. If something seems phishy, exit out.”

It’s also a good time to think about privacy. The voracious tracking systems deployed by Google, Facebook, LinkedIn, Microsoft and others, which correlate your online behaviors for advertisers, also inform the NSA’s surveillance programs, as we now know thanks to Edward Snowden.

On Monday, privacy solutions vendor Abine released version 3.0 of its acclaimed DoNotTrackMe browser tool used by some 2 million people to block hidden tracking mechanisms. This free service, and others like it, such as AVG’s PrivacyFix and Virtual World Computing’s Cocoon, are powerful, though they require you to give up a sliver of convenience.

“Consumers can control who knows where they shop, who can charge them, and, importantly, have complete peace of mind if a site where they shopped ever loses their information or has it stolen by a hacker,” says Abine co-founder Rob Shavell, referring to DoNotTrackMe.

Also worth checking out are Hotspot Shield and TunnelBear, two free virtual private networks that establish a secure tunnel between your computing device and the Internet. Your information remains inside this tunnel, which also protects your computer or mobile device from malware and phishing scams.

Now, we want to hear from you!  Would like to share your opinion or make a comment on the Unlock Your Wealth Radio Show? If so, then please leave your comment or questions in the space provided below and share this article with your friends and family on Facebook and Twitter. Your comments or question could be chosen as our featured Money Question Monday and a phone call by financial expert Heather Wagenhals could dial your way to be live on the Unlock Your Wealth Radio Show.

 

Original article courtesy of 11Alive