Users should be particularly wary of holiday-themed scams over the next few weeks, according to researchers at Malwarebytes.
“Mobile-first shopping has become second nature, and during the holidays, it’s faster and more frantic than ever,” Malwarebytes says. “Fifty-five percent of people get a scam text message weekly, while 27% are targeted daily.
Downloading new apps, checking delivery updates, or tapping limited-time offers all feel routine. Nearly 6 in 10 people say that downloading apps to buy products or engage with companies is now a way of life, and 39% admit they’re more likely to click a link on their phone than on their laptop.”
The researchers note that delivery tracking lures spike during the holiday season, since many users are already expecting to receive these notifications.
“Postal tracking scams are already mainstream, but the holidays invite particular risk,” the researchers write. “With shoppers checking delivery updates several times a day, it’s easy to click without thinking. Around 4 in 10 people have encountered one of these scams (62%), and more than 8 in 10 track packages directly from their phones (83%), making mobile users a prime target. Again, younger shoppers are the most impacted, with 62% of victims being either Gen Z or Millennials (vs 57% of scam victims overall). The messages look convincing: real courier logos, legitimate-sounding tracking numbers, and language that mirrors official updates.”
The researchers also warn of an increase in malvertising attacks offering holiday sales deals.
“The hunt for flash sales, coupon codes, and last-minute deals can make shoppers more exposed to malicious ads and downloads,” Malwarebytes says. “More than half of people (58%) have encountered ad-related malware (or ‘adware,’ which is software that floods your screen with unwanted ads or tracks what you click to profit from your data), and over a quarter have fallen victim (27%). Gen Z users who spend the most time online are the age bracket that is most susceptible to adware, at nearly 40%.”
KnowBe4 empowers your workforce to make smarter security decisions every day. Over 70,000 organizations worldwide trust the KnowBe4 HRM+ platform to strengthen their security culture and reduce human risk.
Malwarebytes has the story.
Here's how it works:
