The Christmas Scam Wake-Up Call: Insights from ITV and Keepnet’s Live Experiment
Learn how ITV, Keepnet, and The Security Company’s live experiment exposed the dangers of holiday scams. Get practical tips to protect your personal data this Christmas.
2024-12-09
'%3e%3cpath%20d='M4%204L15.733%2020H20L8.267%204H4Z'%20stroke='%230671C0'%20stroke-width='2'%20stroke-linecap='round'%20stroke-linejoin='round'/%3e%3cpath%20d='M4%2020L10.768%2013.232M13.228%2010.772L20%204'%20stroke='%230671C0'%20stroke-width='2'%20stroke-linecap='round'%20stroke-linejoin='round'/%3e%3c/g%3e%3cdefs%3e%3cclipPath%20id='clip0_8149_16006'%3e%3crect%20width='24'%20height='24'%20fill='white'/%3e%3c/clipPath%3e%3c/defs%3e%3c/svg%3e)
'%3e%3cpath%20d='M5.37214%2023.8745H0.396429V8.10162H5.37214V23.8745ZM2.88161%205.95006C1.29054%205.95006%200%204.65279%200%203.08658C1.13882e-08%202.33427%200.303597%201.61278%200.844003%201.08082C1.38441%200.548853%202.11736%200.25%202.88161%200.25C3.64586%200.25%204.3788%200.548853%204.91921%201.08082C5.45962%201.61278%205.76321%202.33427%205.76321%203.08658C5.76321%204.65279%204.47214%205.95006%202.88161%205.95006ZM23.9946%2023.8745H19.0296V16.1963C19.0296%2014.3665%2018.9921%2012.0198%2016.4427%2012.0198C13.8557%2012.0198%2013.4593%2014.0079%2013.4593%2016.0645V23.8745H8.48893V8.10162H13.2611V10.2532H13.3307C13.995%209.01393%2015.6177%207.70611%2018.0386%207.70611C23.0743%207.70611%2024%2010.9704%2024%2015.2102V23.8745H23.9946Z'%20fill='%230671C0'/%3e%3c/g%3e%3cdefs%3e%3cclipPath%20id='clip0_3867_24588'%3e%3crect%20width='24'%20height='27'%20fill='%234A4D53'%20transform='translate(0%200.25)'/%3e%3c/clipPath%3e%3c/defs%3e%3c/svg%3e)
'%3e%3cpath%20d='M13.957%2014.75L14.668%2010.0848H10.2225V7.05745C10.2225%205.78115%2010.8435%204.53707%2012.8345%204.53707H14.8555V0.565174C14.8555%200.565174%2013.0215%200.25%2011.268%200.25C7.60703%200.25%205.21403%202.48441%205.21403%206.52931V10.0848H1.14453V14.75H5.21403V26.0278H10.2225V14.75H13.957Z'%20fill='%230671C0'/%3e%3c/g%3e%3cdefs%3e%3cclipPath%20id='clip0_3867_24590'%3e%3crect%20width='16'%20height='25.7778'%20fill='%234A4D53'%20transform='translate(0%200.25)'/%3e%3c/clipPath%3e%3c/defs%3e%3c/svg%3e)
The holiday season is a time for joy and celebration, but it’s also a peak period for cybercrime. In 2023, festive scams cost UK shoppers nearly £11 million, with fraudsters preying on holiday cheer to steal personal information.
To raise awareness, ITV partnered with Keepnet and The Security Company International to conduct a live phishing experiment featured on Tonight. The experiment showcased how scammers use deceptive tactics to manipulate individuals into sharing sensitive details.
In this blog, we’ll explore key lessons from the experiment and share actionable tips to protect yourself and your loved ones from holiday scams.
The ITV-Keepnet Experiment: How Scammers Exploit Holiday Cheer
As part of the Tonight segment, ITV and Keepnet ran a live Christmas scam experiment to demonstrate the ease with which cybercriminals deceive unsuspecting individuals. Shoppers were invited to fill out surveys promising free Christmas gifts in exchange for personal information.
What Happened in the Experiment?
In the survey, participants were asked questions about their Christmas shopping habits. However, they also unknowingly provided sensitive personal information, including:
- Date of birth
- Age
- Email address
- Passwords
- Postcodes
- Security question answers
Shockingly, most participants shared this information without hesitation. In the hands of cybercriminals, this data can be exploited for identity theft, hacking, and targeted phishing attacks.
Why did it work?
The experiment demonstrated how scammers effectively manipulate human psychology to extract personal information. Here’s a closer look at the key factors behind its success:
- Emotional Triggers: The promise of free gifts tapped into the excitement and generosity of the season.
- Time Pressure: Limited-time offers created urgency, encouraging hasty decisions.
- Awareness Gaps: Many participants overlooked the risks of sharing personal details, such as birth dates, email addresses, and passwords, in seemingly harmless surveys.
The experiment served as a wake-up call, underscoring how scammers exploit trust and emotional vulnerability during the holidays.
Common Festive Scams to Watch For
During the holiday season, scammers become more creative and aggressive, exploiting the spirit of giving and the rush of online shopping. Being aware of these tactics can prevent you from becoming an easy target. Let’s dive into some common scams below.
1. Fake Gift Offers
Fraudulent emails, texts, or social media ads promoting free gift cards or prizes often lead to phishing sites that steal your data.
2. Counterfeit Online Stores
Scammers set up fake e-commerce sites offering unbeatable deals, tricking victims into sharing payment information.
3. Charity Scams
During the holidays, scammers pose as legitimate charities to solicit fake donations. Always verify the organization before contributing.
4. Delivery Scams
Phishing messages claiming missed deliveries can lead you to install malware or divulge sensitive information.
Practical Tips for Staying Safe
Scammers often rely on simple tricks to deceive people, especially during the busy holiday season when our guard is down. By following a few proactive steps, you can protect your personal information and avoid becoming a victim of holiday fraud.
1. Verify Before You Click
Always double-check the source of emails, ads, or messages claiming to offer holiday deals. Pay attention to small details like typos, strange URLs, or logos that don’t look quite right. If something feels off, it’s best to avoid clicking on it.
2. Be Skeptical of Free Offers
Scammers love to lure victims with promises of free gifts, holiday vouchers, or exclusive prizes. Before entering your details, ask yourself: Is this offer realistic? If it feels too good to be true, it probably is. Free offers often come with the hidden cost of stolen personal information.
3. Use Secure Payment Methods
When shopping online, use credit cards or secure payment services like PayPal. These options offer better fraud protection and make it easier to dispute unauthorized charges. Avoid bank transfers or unfamiliar payment platforms that lack security features.
4. Invest in Cyber Awareness
Educating yourself and your team about common scams is one of the best defenses. Programs like Keepnet’s Security Awareness Training can teach you how to recognize phishing attempts, identify fake websites, and avoid falling for holiday scams. Awareness is key to staying protected.
The Role of Tools in Cybersecurity
The ITV experiment highlights how essential the right tools are for defending against phishing and scams. Keepnet offers a range of solutions to help organizations stay secure, especially during high-risk periods like the holidays:
- Phishing Simulator: Run realistic phishing campaigns to test and train employees.
- Smishing Simulator: Prepare teams to recognize SMS-based scams.
- Vishing Simulator: Train staff to spot voice-based phishing attacks.
- Incident Responder: Automate and speed up responses to security incidents.
- Human Risk Management Platform: Identify vulnerabilities, provide targeted training, and track improvements over time.
Using these tools, organizations can strengthen their defenses, reduce human risk, and stay ahead of cybercriminals.
Stay Vigilant and Enjoy a Scam-Free Holiday
The festive season should be about joy and giving—not falling victim to scams. By staying informed, cautious, and skeptical of suspicious offers, you can enjoy a safe and secure holiday season.
Want to learn more? Watch the full ITV Tonight episode featuring the live experiment by ITV, Keepnet, and The Security Company International for insights on recognizing holiday scams.
SHARE ON