Blog

Each year, people worldwide are visited during the holidays - and not just by jolly St. Nick. Rather, it's fraudsters who take advantage of the seasonal spirit, and they can take the cheer out of your holiday. 

TYPES OF SCHEMES

Fraudsters use the latest technology in a variety of fraud scams that are headed to a community near you. Be wary of solicitations on social media, search engines, text, and email, and keep an eye out for these schemes:

Charity Scams. Scammers invent fake charities or spoof real ones to take advantage of those who want to help the needy during the holidays.

Fake Holiday E-Cards and Party Invitations. Using a twist on the phishing playbook, fraudsters insert links in holiday e-cards and digital invitations that take you to bogus sites, then steal your credentials and/or distribute malware.

Fake Online Retail Stores. Criminals send unsolicited emails containing links to fantastic deals at the website of a retailer you’ve never heard of.

Fraudulent Gift Cards. Everyone loves the gift cards grandpa gives – in person. Be on the lookout for fraudsters who claim you will receive a gift card by filling out a simple form, which gradually lures you into providing sensitive information.

Malware QR Codes. Scammers can create QR codes leading you to a malware-laced website to infect your mobile device and computer. Sometimes they print QR codes on stickers that can be placed anywhere, even over legitimate advertisements.

Travel Scams. Fraudsters are using artificial intelligence to clone messages and make deepfake videos to promote fake travel deals, vacation rentals, holiday cruises, and more. These videos and voice messages look real, but won’t send you anywhere you want to go.

RED FLAGS

Look for these red flags before you click:

• Unsolicited emails and phone calls asking for your confidential information or for information they would already have if they were legitimate.
• A tone of urgency or veiled threats (“you have five minutes to respond,” “the sender’s feelings will be hurt if you ignore the link,” etc.)

Unfamiliar retailers or websites that have unclear return policies and no contact information other than an email address.

PREVENTION TIPS

Stop. Think. Ask yourself, "Is this too good to be true?" Then, educate yourself about fraud tactics and how to prevent yourself from becoming a victim.

• Check website legitimacy using online tools (e.g., Better Business Bureau, getsafeonline.com, etc.).
• Verify charities independently – search for their website or call their office – before making a donation.
• Check online retailers' URLs carefully for typographical errors and unusual spellings – mistakes signal a spoofed site.
• Never click on a link from an unknown and unverified source.
• Never share your personal information and banking credentials.
• Update security patches as soon as they become available – or have them installed automatically.
• Use multi-factor authentication whenever possible.
• Regularly monitor your financial accounts.

Forward text messages to SPAM (7726)—then report, block, and delete through your service provider.

If You’re a Victim?

Immediately change any passwords you might have revealed. Consider reporting the attack to IC3.gov, law enforcement, and file a report with the Federal Trade Commission. If you have been the victim of a data breach or loss of your personally identifiable information, or identify suspicious activity involving your financial institution, contact them immediately.