Cyber Criminals Are Banking On Black Friday

Uploaded on 2020-11-18 in TECHNOLOGY--Hackers, GOVERNMENT-Law Enforcement, FREE TO VIEW

With the Coronavirus pandemic keeping many people away from the high street, bargain-hunters will be relying even more on online shopping and with more businesses looking to move their business online during Black Friday and Christmas this year. In the absence of footfall in their shops, thousands of retailers will be working hard to take their offers online and give customers the opportunity to make their purchases digitally.

There will be a surge in online transactions over the next month and this will also mean a surge in attacks from hackers and other cyber criminals. 

With a total anticipated spend of around £6 billion, this sale period will be crucial for many retailers who have faced significant financial and logistical challenges throughout 2020 due to the Coronavirus pandemic. But it’s important for e-commerce businesses and consumers to be aware that they aren’t the only ones making preparations for a big November. 

Cyber criminals will also be aiming to profit from this period and looking to seize potentially lucrative opportunities at a time when they know that payment card data and personal details will be flowing through digital databases at a faster rate than ever.

In the US, Black Friday has become the biggest shopping day of the year, as the day after the Thanksgiving holiday retailers mark down their prices to kick-start the gift-buying season and get consumers spending. In the last decade, to boost online retail equally, Cyber Monday has been introduced the first Monday after Thanksgiving making US consumers go online for the best bargains.

In previous years, phishing attacks alone have seen an increase of 300% around Black Friday, putting consumers at greater risk of text, email and social media scams. Add malware, ransomware, viruses and distributed denial of service (DDoS) attacks into the mix and all of a sudden trading online can feel like a dangerous place to be.

Yet with the right preparation and attention to detail, you can have a profitable and productive Black Friday period.

What Can Be Done To Minimise The Risk Of A Cyber Attack?

If your business is trading online this November, it is important to take steps now, rather than simply ignoring the risk and hoping for the best. By putting the right measures in place, you can not only reduce the likelihood of a breach but also enhance your reputation and help customers to safeguard themselves. Communication is key and letting your customers know you are vigilant in cyber security will actually build customer confidence in the process. Alert them to your security and privacy procedures and tell them what you are doing to safeguard them. 

If you discover that scammers are using your brand to target customers, issue a prompt warning and urge them to check that any links used to your website are legitimate. If you find and isolate those scams before your customers do, then all the better. For that you will need professional help.

With time running short a good step to take is to scan your digital assets for vulnerabilities now and test your defences so you know where you need to improve. 

This is known in cyber security as Penetration Testing. Using real world experience of all types of attack, highly qualified professionals can put your website through its paces to ensure that it’s fit for purpose. By mimicking the type of attacks carried out by potential hackers, a penetration tester can explore and recommend necessary improvements before an attacker finds them.

There is no doubt that businesses around the globe will be more dependent on e-commerce than ever before this Black Friday. Given the events of the last few months we all hope that it’s a successful one for businesses that have struggled to trade through the uncertainty of 2020. 

BDaily:        Mirror:       Finance Digest:      Guardian:

If you have any concerns about the resilience of your online presence against the threat of a cyber attack, now would certainly be the time to consult an expert you can trust. Check out our free access Cyber Security Service Supplier Directory to find the right expertise in your location: 

Directory Listings: Pentesting & Security Assessments

You Might Also Read: 

Cybercrime In Britain Does Serious Harm:

 

 

« Trump Fires National Cyber Security Chief
CYRIN Cyber Alert - Test-Drive The CYRIN Cyber Range »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

Infosecurity Europe, 3-5 June 2025, ExCel London

Infosecurity Europe, 3-5 June 2025, ExCel London

This year, Infosecurity Europe marks 30 years of bringing the global cybersecurity community together to further our joint mission of Building a Safer Cyber World.

Lacuna Talent

Lacuna Talent

Lacuna Talent delivers the combined power of Via Resource, the international Cyber Security recruiter, and Lacuna Talent, the Specialist AI/Data recruiter.

Paramount Computer Systems

Paramount Computer Systems

Paramount is a regional leader in the Middle East for cybersecurity solutions and consulting services.

FarrPoint

FarrPoint

FarrPoint is a specialist telecoms consultancy providing a range of services including cyber security assessments and technical assurance to safeguard your data.

Gita Technologies

Gita Technologies

Gita Technologies works to create integrated solutions to the thorniest problems in the field of intelligence and cyber today.

Capsule8

Capsule8

Capsule8 is the only company providing high-performance attack protection for Linux production environments.

Andreessen Horowitz (a16z)

Andreessen Horowitz (a16z)

Andreessen Horowitz (known as "a16z") is a venture capital firm in Silicon Valley, California that backs bold entrepreneurs building the future through technology.

ThreatModeler

ThreatModeler

ThreatModeler is an automated threat modeling solution that fortifies an enterprise’s Software Development Lifecycle by identifying, predicting and defining threats.

Hazy

Hazy

Hazy specialises in financial services, helping some of the world’s top banks and insurance companies reduce compliance risk.

Privacyware

Privacyware

Privacyware's ThreatSentry combines a state-of-the-art Web Application Firewall and port-level firewall with advanced behavioral filtering to block unwanted IIS traffic and web application threats.

Inpher

Inpher

Inpher has pioneered cryptographic Secret Computing® that enables advanced analytics and machine learning while keeping data private, secure, and distributed.

Silicon Labs

Silicon Labs

Silicon Labs are a leader in secure, intelligent wireless technology for a more connected world. We provide award-winning hardware and software security to help safeguard connected devices.

Zeva

Zeva

Zeva solves complex identity and encryption challenges for the federal government and corporations around the globe.

Certihash

Certihash

Certihash have developed the world’s first blockchain empowered suite of information security tools based on the NIST cybersecurity framework.

Hadrian

Hadrian

Hadrian is modernizing offensive security practices with automation, making them faster and more scalable. Equipped with the hacker’s perspective, companies can now know what their critical risks are.

Involta

Involta

Involta orchestrates IT transformation journeys using well-defined and rigorous processes to deliver hybrid cloud solutions, consulting and data center services tailored to our clients’ needs.

Federal Bureau of Investigation (FBI)

Federal Bureau of Investigation (FBI)

The mission of the FBI is to protect and defend against intelligence threats, uphold and enforce criminal laws, and provide criminal justice services.