National Cyber Security Centre
Black Friday shoppers urged to avoid handing cyber criminals early Christmas gift
The NCSC has updated guidance ahead of Black Friday to help people shop online securely.
- National Cyber Security Centre (NCSC) issues refreshed guidance for online shoppers ahead of Black Friday and Cyber Monday
- Online shoppers encouraged to follow top tips as criminals seek to exploit increased number of transactions in run-up to Christmas
- The NCSC is also supporting Action Fraud’s #FraudFreeXmas campaign following increase of online fraud
Online shoppers searching for Black Friday bargains are being encouraged to follow top tips to stay safe and prevent cyber criminals cashing in on the annual sales rush.
The tips from the National Cyber Security Centre (NCSC) – which is a part of GCHQ – are contained in refreshed guidance published yesterday (Monday) ahead of the sales rush traditionally sparked by Black Friday, closely followed by Cyber Monday.
The festive period is a potentially lucrative time of year for cyber criminals, who anticipate that consumers may slightly lower their guards during the rush to bag the best deals.
The tips are aimed at helping shoppers before, during, and after making an online purchase, and include advice covering secure payments to steps to take if things go wrong.
The guidance complements a wider campaign, #FraudFreeXmas, launched by Action Fraud, following a surge in reports of online fraud.
Sarah Lyons, NCSC Deputy Director for Economy and Society, yesterday said:
“At this time of year our inboxes are filling up with promotional emails promising incredible deals, making it hard to tell real bargains from scams.
“We want online shoppers to feel confident they’re making the right choices and following our tips will reduce the risk of giving an early gift to cyber criminals.
“If you spot a suspicious email, report it to us or if you think you’ve fallen victim to a scam, report the details to Action Fraud and contact your bank as soon as you can.”
The advice, which can be found in full on the NCSC’s website, includes:
- being selective about where you shop;
- only providing necessary information;
- using a secure protected payment;
- keeping your accounts secure;
- identifying suspicious emails, phone calls, and text messages, and;
- what to do if things go wrong.
Helen Dickinson OBE, Chief Executive of the British Retail Consortium, yesterday said:
“With more and more of us browsing and shopping online, retailers have invested in cutting-edge systems and expertise to protect their customers from cyber-threats, and the BRC recently published a Cyber Resilience Toolkit for extra support to help to make the industry more secure.
“However, we as customers also have a part to play and should follow the NCSC’s helpful tips for staying safe online.”
As part of its ongoing work to protect the public from cyber criminals, the NCSC’s takedown service, which is part of its Active Cyber Defence programme, has removed 113,000 malicious URLs from fake online shops over the past 12 months. These sites would collect victim credit card details and customers would either get counterfeit goods in return or no goods at all.
Earlier this year, the NCSC and the City of London Police launched the Suspicious Email Reporting Service (SERS), which received 2.3 million reports from the public in its first four months resulting in thousands of malicious websites being taken down. Members of the public who have received a suspicious-looking email over the holiday period should forward it to email@example.com.
More tips on protecting yourself and your family online can be found by visiting the government’s Cyber Aware website, which details six steps that will help protect against the majority of common cyber threats.
Latest News from
National Cyber Security Centre
Leading women in tech urge schoolgirls to take on the UK's flagship cyber security contest27/09/2022 11:15:00
Registration opens for the CyberFirst Girls competition 2023.
NCSC launches package of support to help retailers protect themselves and their customers online21/09/2022 15:15:00
New guidance for retailers on choosing the right authentication methods and removing malicious websites.
UK and allies expose Iranian state agency for exploiting cyber vulnerabilities for ransomware operations21/09/2022 09:15:00
Joint advisory highlights threat from cyber actors affiliated with Iran’s IRGC.
Her Majesty Queen Elizabeth II and GCHQ20/09/2022 09:05:00
We reflect on Her Majesty's long association with GCHQ and the NCSC.
Potential phishing activity update14/09/2022 11:15:00
The National Cyber Security Centre warns about potential scams during the period of national mourning.
GCHQ mourns the death of Her Majesty The Queen09/09/2022 15:25:00
Director GCHQ, Sir Jeremy Fleming, offers deep condolences to the Royal Family.
NCSC CEO appears at major US cyber security summit09/09/2022 14:15:00
Lindy Cameron discussed cyber security at the 13th Billington Cyber Security Summit in Washington.
UK condemns Iranian state-linked actors for cyber attack against Albania08/09/2022 12:15:00
The UK has attributed a series of cyber attacks on Albanian government infrastructure to Iranian state-linked actors.