Scams unwrapped: Kaspersky’s cybersecurity experts warn of evolving holiday scams

The holiday season is here! It’s not only a time for magic and celebration but also a prime opportunity for fraudsters. They are on the prowl to exploit the festive rush for gifts and bargains. Amid the sparkle of year-end celebrations, cybersecurity experts at Kaspersky have identified several prominent scams. All of these are targeting consumers across various regions and languages.

RELATED: AI shopping scams surge 5000%: Tech expert shares 5 threats to avoid this Christmas

Fake holiday shops

Deceptive online stores mimic the look and feel of legitimate e-commerce sites, offering seasonal items such as decorations, gifts, and even trees at steep discounts. These sites often appear highly localised, adapting their language and currency based on the user’s geographic location, leveraging data extracted from browsers. Victims typically encounter these stores by following links in ads or pop-ups. These sites aim to steal funds. Often, these fraudulent stores exist only for a short period, as they get flagged by the vendors of goods.

Free mobile data offer

This scam plays on the allure of free services, claiming to provide free mobile data valid across all major telecom providers. In order to receive the free data, victims are required to share the promotion link with 10–15 contacts via WhatsApp, ensuring the scam spreads exponentially. After sharing, victims are prompted to enter their personal details — name, phone number, and email — into a form. The collected data is then sold on the Dark Web or used in other fraudulent activities. In some cases, victims unknowingly download malware that compromises their devices, leading to further exploitation.

An example of a scam on free data for mobile

Holiday payments on behalf of government agencies

Fraudsters impersonate government authorities, promising fictitious payments in celebration of the holidays. This scam has been reported in several African countries, including Kenya and Nigeria. To receive payment, victims are directed to fill out a survey which requires personal details like name and phone number. Once the survey is completed the user is asked to share the link to the announcement with their connections via WhatsApp. These details are collected and added to fraudulent databases, then sold to third parties or used for phishing attacks and identity theft. This scam exploits trust in government systems and the festive spirit of giving.

Christmas recipe scam

This scam begins with a seemingly harmless email promoting a holiday cake recipe. Victims are encouraged to pay a small fee to access the recipe. Once payment is made, the victim’s credit card information is stolen. The fraudsters also collect other personal information essential for accessing banking services.

An example of a fraudulent page for purchasing a Christmas recipe in Portuguese

“Holiday scams are not a new phenomenon, but they have evolved to become increasingly sophisticated, leveraging regional traditions and technology to exploit unsuspecting victims. The rush of the holidays makes people more vulnerable — they’re distracted, eager to grab a deal, or trust promotions that align with festive themes. Cybercriminals are not just stealing money — they’re building massive databases of personal information that fuel future fraudulent schemes. The holiday season is a time for joy and giving, but users need to remain vigilant to ensure they’re not unknowingly giving fraudsters the tools to exploit them further,” comments Olga Svistunova, Senior Web Content Analyst at Kaspersky.

Kaspersky’s recommends to stay safe during the holiday season

Verify the authenticity of websites and offers before making purchases.
Avoid clicking on links from unsolicited emails or messages.
Refrain from providing personal information unless it is to a verified and trusted entity.
Be cautious of deals that seem too good to be true — they often are.
Use a comprehensive solution that protects computers and smartphones – it will keep you from going to phishing sites or running malware.

Scams unwrapped: Kaspersky’s cybersecurity experts warn of evolving holiday scams

More in Business

Elon Musk’s SpaceX leads world’s 10 most valuable unicorns in 2024

Mastercard, MTN Group Fintech, and Arifu empower 1M African small businesses with digital skills

Weight loss medications are 15x cheaper on Darknet, but are yhey safe?

Siemon adds bundled fibre trunks for faster, more efficient network deployments

TymeBank becomes Africa’s ninth unicorn with $250M Series D funding

MTN Group announces leadership changes to propel Ambition 2025 Strategy and digital growth

Raxio Group achieves Tier III Certification for Mozambique and Ethiopia data centres

Towards cashless societies: Mobile money leading the way in West Africa

Events

Technology Picks

What do satellites have to do with climate change and sustainability?

Securing critical infrastructure: The radical possibilities of facial recognition systems

TECH TIPS: Taming Group Chats with WhatsApp’s ‘Mute’ Feature

Classic account takeover via the direct deposit change

Editorial

Unlocking Nigeria’s Digital DNA: The $18B potential for innovation and growth

Crafting the Blueprint: CEO perspectives on Nigeria’s digital economy

Upcoming Events

The South Africa Manufacturing Show has announced the honorees for the esteemed Manufacturing 50 Awards

BFSI IT Summit: Recipients of the Prestigious BFSI50 Awards!

Unconnected! Nigeria’s premier expo + conference on telecoms and renewable energy to bridge rural gaps