Circle 01
Circle 02
Circle 03

Join our mailing list

Subscribe to the TSC newsletter to receive exclusive news and advice
  • 10 November 2021
  • 3 min read

Cyber criminals are simply having a wonderful Christmas time: typosquatting, ransomware and social engineering

Christmas is the time to celebrate with family and friends. But it's also prime time for cybercriminals. Have a cyber secure Christmas by following this...
16

Christmas is the time to celebrate with family and friends. But it's also prime time for cybercriminals. Have a cyber secure Christmas by following this advice.



As the year ends, our spending skyrockets as we look for those perfect Christmas presents and seek out sales bargains. The triple treat of Christmas, Black Friday and Cyber Monday sees us spending more than at any other time of the year — much of it online.

But take care that the treats don't become threats.


Cybercriminals are ready and waiting to take advantage.

You need to be vigilant, especially at this time of year. Cybercriminals understand that people 'in a hurry' behave more rashly and take fewer precautions. This makes these different types of cyberattack more effective.


Have a cyber secure Christmas — protect yourself, your family and your company

Preparing for the busiest time of the year, it's a good idea to remind yourself of the cyber secure behaviour that you have been trained in. Include your family members in this. Take time to check they know how to cyber-protect themselves in the run-up to Christmas.

To give you a hand, we’ve rounded up some common cyber-attacks to be aware of, including tips on how to avoid them:


Typosquatting

The internet is awash with seemingly genuine websites offering in-demand products. These fake websites often have URLs and names which seem genuine. However, look closely and there will often be incorrect characters. It only takes a ‘0’ instead of an ‘O’ and a customer could be sending sensitive banking information or card details directly to a fraudster.

Top Tip: Always double-check the URL on a website, and take time to spot character differences (such as an i replaced with a l or a 0 in place of an O).


Ransomware Attacks

Ransomware attacks are now back on the rise. The rapid digitisation of many businesses during the pandemic has left many with vulnerabilities. Companies as large as fitness technology firm Garmin have paid millions in ransomware attacks. WatchGuard Technologies report that ransomware attacks are on target to be 150% up by the end of 2021.

Top Tip: Enforce the principle of least privilege between peers and companywide. It’s essential to only share documents and information with verified parties.


Mobile Malware

In 2019, one-third of all shopping in the UK was done on mobile devices. Cybercriminals are focusing their attention on mobile hacks and malware. In 2020, Microsoft’s 365 Defender Research Team found a new kind of Android malware significantly more sophisticated than ever before. It fully disabled any device and required the owner to pay a ransom to gain access and control again.

This kind of technology is becoming more common. It is important to keep best practice in mind when using mobile devices. This includes avoiding making purchases on public Wi-Fi and ensuring the use of complex passwords for all mobile apps and shopping accounts.

Top Tip: Ensure all of your computers, phones, tablets and software are up to date. Most updates contain vital security patches.


Social Engineering

A large chunk of cybercrime applies the technique of social engineering. Essentially, this is deceiving victims into giving away personal information which is then used to commit a cybercrime against them. Phishing is a classic example. Cybercriminals are looking to evoke an emotional response — usually trust or fear — that encourages action. That's why they can be so tricky to spot and avoid.

Sometimes, people simply give away their personal information without thinking. Watch this video on why you should always keep your privacy settings up to date:

https://www.youtube.com/watch?v=ljvC0ghBQzE

Top Tip: As with most things in life, it's best not to act in haste or on emotion alone. Before acting, take a couple of seconds and reassess your decision. Considering your action can avoid real problems.


For more detailed information on what to look out for and how to act in a cyber-secure manner, contact your information and cybersecurity team.

Wishing you all a cyber safe, wonderful and happy festive season!


See how we can help you protect your organisation today?

Circle 01
Circle 02
Circle 03

Join our mailing list

Subscribe to the TSC newsletter to receive exclusive news and advice