[SCAM OF THE WEEK] Summer Scams Your Users Should Watch Out For

Depositphotos_23924739_SWhile your users are getting ready for their next beach vacation, cybercriminals are preparing for their opportunity to strike. Check Point Research warns about this and common phishing attacks related to summer vacations.

According to the research company, "In May 2023, the period running up to summertime, 29,880 new domains related to holidays or breaks were created. This represents a 23% year-over-year increase compared with the same period last year, when 24,367 new domains were created. Of those websites that went live, 1 in every 83 were either malicious or suspicious."

They also observed several phishing campaigns with some examples of an approved vacation request for time off and a fake announcement on the annual and summer open vacation plan for this year. Below is an example of what your users should look for: 

fake HR email announcement of summer open vacation plan

Source: Check Point Research

There are going to be more summer scams to come and this season has just begun. I suggest you send the following alert to your users:

Summer is here, which means cybercriminals are going to attempt to trick you into falling for their common tricks. Make sure to watch out for these warning signs: 

  • Emails that sound 'too good to be true' for an all expense paid trip probably are
  • Look out for domains that have any misspellings or additional letters
  • If the URL doesn't start with HTTPS, it's most likely not legitimate 
Make sure you're staying safe this summer and ALWAYS Think Before You Click!

Continual end user education is essential, especially when your users' guard may be down this summer. If your organization hasn't taken advantage of new-school security awareness training, now is the time to start. 

Free Phishing Security Test

Would your users fall for convincing phishing attacks? Take the first step now and find out before bad actors do. Plus, see how you stack up against your peers with phishing Industry Benchmarks. The Phish-prone percentage is usually higher than you expect and is great ammo to get budget.

PST ResultsHere's how it works:

  • Immediately start your test for up to 100 users (no need to talk to anyone)
  • Select from 20+ languages and customize the phishing test template based on your environment
  • Choose the landing page your users see after they click
  • Show users which red flags they missed, or a 404 page
  • Get a PDF emailed to you in 24 hours with your Phish-prone % and charts to share with management
  • See how your organization compares to others in your industry

Go Phishing Now!

PS: Don't like to click on redirected buttons? Cut & Paste this link in your browser:


Subscribe To Our Blog

Comprehensive Anti-Phishing Guide

Get the latest about social engineering

Subscribe to CyberheistNews