Black Friday bargain-hunters are 'prime pickings' for cyber criminals, warn intelligence chiefs

'Cyber criminals have a field day at this time of year because they know your guard is a little lower as you rush to bag the bargains'

Chris Baynes
Friday 23 November 2018 13:29 GMT
Shoppers have ben
Shoppers have ben (REUTERS)

Your support helps us to tell the story

From reproductive rights to climate change to Big Tech, The Independent is on the ground when the story is developing. Whether it's investigating the financials of Elon Musk's pro-Trump PAC or producing our latest documentary, 'The A Word', which shines a light on the American women fighting for reproductive rights, we know how important it is to parse out the facts from the messaging.

At such a critical moment in US history, we need reporters on the ground. Your donation allows us to keep sending journalists to speak to both sides of the story.

The Independent is trusted by Americans across the entire political spectrum. And unlike many other quality news outlets, we choose not to lock Americans out of our reporting and analysis with paywalls. We believe quality journalism should be available to everyone, paid for by those who can afford it.

Your support makes all the difference.

Shoppers are “prime pickings” for cyber criminals during Black Friday sales, the UK’s intelligence service has warned.

The rush to snap up deals puts bargain-hunters at greater risk of “malicious” threats, said the National Cyber Security Centre (NCSC).

The agency – a wing of the GCHQ intelligence service that deals with online security - has issued advice on how to shop safely.

Shoppers are expected to spend £10.4bn in this year's Black Friday sales, according to retail analysts at Global Data.

“Cyber criminals have a field day at this time of year because they know your guard is a little lower as you rush to bag the bargains,” said Kate Sinnott, the NCSC’s head of public engagement.

She added: “Your inbox is probably full of promotional emails promising the most incredible deals. And when this is the norm, it becomes hard to differentiate real bargains from the dodgy ones.”

Ms Sinnott warned some of the scams were “very sophisticated”.

How to shop safely online

National Cyber Security Centre's tips on avoiding scams

  • Install the latest software and app updates
  • Secure important accounts with strong passwords
  • Turn on two-step authentication 
  • Use a password manager
  • Be wary of links in emails and texts
  • Only fill in the mandatory details of forms
  • Close browser 'when things don't feel right'

Security firm RiskIQ warned last week.that criminals were seeking to cash in on the annual shopping bonanza by making fraudulent mobile apps using the brand names of leading retailers.

The fake apps are designed to fool people into sharing their passwords or credit card details in the hope of finding the best Black Friday deals.

NCSC said it had dealt with 557 “cyber incidents” in the past 12 months and 1,167 since the agency was set up two years ago. It said it wanted to people to share its tips on staying safe as part of a national “cyber chat” on Black Friday.

“It’s vital that knowledge is shared,” said Ian Levy, technical director of the agency. “Staying safe online doesn’t require deep technical knowledge, and we want the whole country to know that the NCSC speaks the same language as them. It’s vital that knowledge is shared, and that’s why we’re encouraging everybody to have a cyber chat. With so many of the UK shopping online, we want to see these tips shared from classrooms and scout groups to family dinner tables and old people’s homes.”

Ciaran Martin, chief executive at NCSC, warned business leaders in September that companies needed to be on guard for "elite hackers" targeting customer data.

"It is not speculation and it is not scare-mongering," he said.

Data breaches cost firms an average of £3m, according a report by IBM.

Thank you for registering

Please refresh the page or navigate to another page on the site to be automatically logged inPlease refresh your browser to be logged in