Black Friday is quickly approaching, and while UK shoppers are eagerly eyeing discounts, scammers have a different focus. As the postal network gears up for a surge in deliveries, cybercriminals are taking advantage of the chaos to perpetrate scams directly at people’s doorsteps.
Recent reports in the UK have highlighted a rise in “quishing,” a tactic where criminals embed phishing attacks within QR codes. This method is now being combined with a revived brushing scam, becoming more aggressive just in time for Black Friday.
Technology expert Theodore Ullrich from Tomorrow Lab has observed a spike in these scams as consumers eagerly await their deliveries. He warns that fraudsters prey on the moment when recipients trust an unexpected package, often leading them to scan QR codes that redirect to phishing sites.
According to Ullrich, scammers exploit the trust associated with delivery-related QR codes, tricking individuals into revealing personal and financial information within seconds. This new twist on brushing scams involves luring victims into phishing traps through QR codes attached to parcels.
Ullrich emphasizes that scammers are becoming bolder due to the abundance of personal information available online. He cautions that individuals should be cautious even if a package seems harmless, as scammers can replicate legitimate websites to deceive victims.
The expert stresses the importance of verifying unexpected parcels with the company directly and recommends changing passwords and enabling two-factor authentication if targeted. Ullrich advises against scanning unfamiliar QR codes, urging vigilance during peak shopping periods like Black Friday.
He concludes by advising consumers to stay alert, avoid hasty actions, and treat any suspicious activity with caution to safeguard against identity theft and financial loss during the holiday season.