Digital devices will be the key tool for Black Friday shopping, making it essential for users to take measures to avoid falling victim to cyber fraud.
The holiday season brings with it a wealth of offers and purchasing opportunities for consumers, particularly as e-commerce platforms from various companies offer attractive discounts that are essential for ensuring savings during this important shopping period.
E-commerce continues to thrive post-pandemic. In Costa Rica, 48.5% of people made purchases via electronic means, according to the country’s first E-Commerce Survey. Currently, the integration of digital technologies into the consumer shopping process is emerging as a powerful trend, one that is gaining increasing importance in the sales landscape.
Therefore, Palo Alto Networks shares some practical tips to keep you safe while making your holiday purchases from digital devices:
1. Protect Yourself from Ransomware by Keeping Personal and Work Devices Separate
According to the latest data from Unit 42, Palo Alto Networks’ Threat Intelligence and Research Unit, ransomware attacks have been a significant concern in Latin America. One of the most notorious ransomware attacks last year occurred in Costa Rica, when the Conti and Hive groups affected multiple government agencies, prompting a national emergency declaration.
Ransomware remains a serious security threat. According to the 2023 Attack Surface Threats Report by Unit 42, 85% of businesses using Remote Desktop Protocol (RDP) – a communication practice that allows one computer to access and control another remotely over the internet – have high vulnerability to ransomware attacks.
Thus, consumers working from home and shopping on their work devices are prime targets. Attackers aim to compromise the user’s work device, access corporate networks, and demand ransom for their files.
Users should use work devices strictly for work and leave personal matters to their personal computers. It’s common for people to store both personal and corporate passwords in the same password repository, which could jeopardize both. Theft of password information could harm both the individual and the organization. Keep in mind that ransomware demands are increasing, and no organization, large or small, is immune to an attack.
2. Carefully Examine Email Offers to Avoid Phishing Scams
The most common way attackers infiltrate your computer is through phishing emails. During the holiday shopping season, this risk increases beyond the usual, and consumers must stay alert to various phishing scams, such as fake delivery notices, order confirmations, charity requests, and more.
Remember to think before you click. Don’t open links from unknown sources. If a deal or offer sounds too good to be true, it probably is.
3. Double-Check Website Domains to Ensure You’re Visiting the Right Site
Cybersquatting occurs when cybercriminals register domain names that resemble existing brands or domains, intending to profit from consumers’ typographical errors. The illegal use of domains is designed to confuse consumers into thinking that legitimate brands own these similar-sounding domain names.
Since many consumers make their holiday purchases online, attackers set up counterfeit domains resembling popular shopping sites. For example, Amazon and Mercado Libre are often among the most frequently impersonated domains.
Consumers should ensure they type domain names correctly and verify that the site owners are trustworthy before entering any information. Looking for the padlock symbol or “https” in the browser address bar is a good strategy to identify secure sites.
4. Monitor Credit Card Statements to Avoid Form-Jacking Attacks
Credit and debit cards are among the most popular payment methods for online shopping, but they also come with the risk of form-jacking, where cybercriminals inject malicious software code into a webpage used by the consumer to make a purchase or share personal information. This scam is designed to steal credit card details and other personal information from payment forms captured on shopping websites.
The challenge for consumers is that form-jacking attacks can be hard to detect. Your transaction may go through, but behind the scenes, attackers are stealing your credit card information and could sell it on the dark web. It’s essential to double-check your credit card statements for any suspicious activity.
In general (not only with form-jacking), consumers should always use a credit card or prepaid gift card for online purchases. This ensures a quicker resolution if a cybercriminal steals card information and attempts to make a purchase. Prepaid gift cards, in particular, limit the amount of money a cybercriminal could steal.
For more information or inquiries, please contact us at info@central-law.com
Source: Forbes Centroamerica
