The content material of this submit is solely the duty of the writer. AT&T doesn’t undertake or endorse any of the views, positions, or data offered by the writer on this article.
Present playing cards have change into a go-to Christmas current for many individuals, however their dramatic rise in recognition has additionally sadly made them a major goal for hackers.
The explanation why reward playing cards are such a preferred current is due to how sensible they’re to make use of. Whenever you’re undecided what to purchase somebody, reward playing cards current a straightforward and accessible strategy to present somebody how a lot you recognize them.
However don’t permit the comfort of reward playing cards to get the higher of your judgment in regard to safety. It’s simple to assume that reward playing cards are protected from cybercriminals, however in actuality, reward card fraud (also called reward card scamming) is a really actual menace not solely to retailers and enterprise homeowners however to on a regular basis people resembling your self as properly.
Overlooking fundamental cybersecurity hygiene whenever you’re dashing to attain one of the best offers you can on-line has at all times been a danger you’ve taken previously, nevertheless it additionally is probably not a danger you’ll be able to afford to take this 12 months.
Learn on to search out out why and how one can forestall it.
Why do scammers like reward playing cards?
Present card fraud is a much bigger downside than most individuals understand. In 2022, for instance, FTC information revealed that practically $230 million was misplaced to reward card fraud, affecting greater than 48,000 folks in complete.
Present playing cards are well-liked with retailers as a result of they current a really dependable stream of income. However on the similar time, they forestall a viable alternative for scammers to get away with simple cash due to how tough they’re to trace.
Scammers like reward card playing cards as a result of they’re simple to interrupt into and in addition as a result of they don’t have the identical degree of safety authentication that credit score or debit playing cards have. Most cybercriminals will steal reward card numbers on-line from shops providing them. They’ll accomplish this by utilizing botnets that carry out brute drive assaults. The one factor a felony has to do is to check hundreds of various mixtures of PIN and reward card numbers earlier than hacking right into a consumer’s account and depleting the cardboard of its funds.
Moreover, as soon as the assault is accomplished, there’s normally no hint of the felony’s identification and the funds can’t be traced. And regardless that most reward playing cards have restricted quantities of cash loaded on them (most reward playing cards run between $15 to $500 on the most), when cybercriminals are working their operations on a big scale they’ll flip a really sizable revenue.
Cybercriminals may also monetize reward playing cards by illegally promoting them on the darkish net or different third-party web sites. A few of these web sites will provide the flexibility to transform reward playing cards to money at 30%+ of the entire card worth, presenting a straightforward strategy to make fast cash.
Within the subsequent part, we’ll dive into the precise varieties of reward card fraud that may have an effect on you.
Kinds of reward card scams
Listed here are the most typical varieties of reward card scams:
Fictitious adverts
On this technique, cybercriminals will submit faux however realistic-looking commercials for objects ‘on sale’ on ecommerce web sites the place they may trick customers to into sharing their reward card numbers to buy the objects. As soon as the cash has been obtained, the adverts will disappear, and the sufferer can be out of luck.
In different phrases, folks can fall for this trick the identical approach they’ll fall for different frequent varieties of identification theft, with folks being unassuming because the menace comes from a innocent supply (on this case, an internet reward card for the vacations).
Present card demand
On this technique, cybercriminals will ship a textual content message or a telephone name to victims posing as a legislation enforcement or authorities company and demanding you to pay them in reward playing cards (Amazon, Apple, and Google Play playing cards are probably the most generally requested). They’ll demand that you simply buy the playing cards after which present them the reward card data, at which level they’ll disappear immediately.
One other technique on this similar vein is for the cybercriminal to pose as somebody you understand, resembling your boss, supervisor, good friend, or member of the family. They’ll discover this data out by taking a look at your social media or LinkedIn profiles. Pretending to be the particular person you understand, they’ll ask you to buy a present card for them and to ship the codes over, normally arising with a narrative for why you want to take action within the course of.
This is among the commonest varieties of reward card fraud that may have an effect on on a regular basis folks.
Stealing codes
This technique is the place a complicated cyber attacker will hack into the web database of a present card firm to search out and monitor the reward card numbers and activation codes, normally by way of brute drive assaults as we mentioned above.
You might go to buy a card, after which as soon as it’s been activated, the felony will deplete it of its funds. Then whenever you or the recipient of the cardboard goes to spend it, it gained’t work as a result of there’s now not any cash on the cardboard.
Generated reward playing cards
Different instances, cybercriminals will create web sites or cellular apps that declare you’ll be able to generate reward card codes which might be redeemable at main retailers and on-line shops. After you’ve ‘bought’ the reward card, the cash can be transferred to the account of the cybercriminal, and the sufferer will find yourself with nothing.
Alternatively, scammers might give you a present card that merely has much less worth than what you paid for it. If so, the cardboard is both faux or was stolen.
Easy methods to cease reward card scams
The primary strategy to cease your self from turning into a present card rip-off is to be alert. Don’t have the mindset that “it is going to by no means occur to you,” as a result of that’s precisely the identical mindset that the hundreds of different victims of reward card scams initially had as properly.
Be sure you by no means present your private or monetary information to unsolicited telephone calls, textual content messages, or emails of any type. No professional enterprise, authorities company, or legislation enforcement division will ask you to offer your private or monetary information for no motive, they usually actually gained’t demand you to pay for something by way of reward playing cards. Normally, nevertheless, fraudster playing cards are simple to detect.
One other wonderful means to make sure you’re protected is to make use of correct doc administration strategies and avoid weak mainstream options relating to recording your monetary information, together with your reward card numbers. If the reward card finally ends up being a malicious device, accessing your deeds, private data, and even work notes is greatest accomplished by means of a protected platform (resembling an encrypted PDF) and never Google Workspace or Workplace 365.
In case your boss or member of the family asks you by way of textual content message to purchase them a present card, you’ll be able to relaxation assured that it’s not likely your boss or member of the family. The actual fact that your ‘boss’ or ‘member of the family’ is texting you by way of a distinct telephone quantity (and normally one with a totally totally different space code) ought to inform you the entire story.
Moreover, be sure to solely store with trusted companies or on-line retailers which might be PCI DSS compliant, that means that they adhere to the twelve safety requirements for conducting transactions as set by the Cost Card Business Safety Requirements Council (PCI DSS). In a nutshell, these requirements are designed to make sure the continued encryption and authentication of buyer private and monetary information. It’s a serious purple flag if a enterprise just isn’t PCI-DSS compliant or doesn’t actually have a Visa or MasterCard seal of approval.
Conclusion
Present card fraud doesn’t need to wreck your vacation season. Do not forget that regardless that reward playing cards could also be handy to make use of, they will also be handy for cybercriminals as properly because the transactions can’t be tracked. Have enjoyable procuring to your family members this upcoming vacation season however be in your guard on the similar time.
