Technologies
2022 Black Friday: Make Sure You Avoid All the Elaborate Scams
Scammers don’t take a break during the holidays. Learn what to watch for to protect yourself.
This story is part of Gift Guide, our year-round collection of the best gift ideas.
Black Friday arrives the day after Thanksgiving — which is Nov. 25 this year. It’ll be a day filled with deals on items like headphones and TVs, but with all that potential money flowing from customers to stores, cybercriminals are unfortunately looking to steal some of it.
Scammers work year round, but they turn up their efforts during the high-spending holiday season to exploit the spirit of giving.
The scams range far and wide — as retailers like Amazon, Best Buy and Walmart roll out deals over the holidays, fraudsters create elaborate websites to trick you into spending money on products you’ll never receive. You may receive text messages or emails claiming you’re eligible for a refund for an item you never purchased, just so thieves can get your credit card information. You might even be enticed into donating to a charity that provides homes for abandoned puppies — only to find out it doesn’t actually exist.
Scams come in all shapes and sizes, but there are always red flags to help spot them. Here’s what you need to know about Black Friday scams and how to avoid becoming a victim this holiday season.
For more about security and privacy this holiday season, check out how to protect yourself from identity theft, how to protect your phone app privacy, and the most common cryptocurrency scams.
Fake websites and fraudulent apps go ‘phishing’
In a phishing scheme, the goal is for hackers to get their hands on your personal information, like your credit card number, social security or account password. Pretending to be a large retail corporation, the fraudsters send out an official-looking email or text message, usually with a link to a fraudulent website designed to look just like a legitimate site.
Researchers at security firm Avanan discovered that hackers were sending out spoofed Amazon order notification emails. The email resembled your run-of-the-mill order confirmation, except that the order is false and the charge is significant.
Naturally, if you believe you’re being charged for a substantial amount, you would want to reach out to Amazon. But in this instance, if you use the link in the phishing email to get in contact, you’ll be redirected to a fake Amazon webpage with a false phone number to dial. If you call, the fraudsters won’t initially pick up, but they’ll soon call back, asking you to provide your card number, expiration date and CVV to «cancel the order.» And just like that, they’ve got your information.
These types of attacks are commonplace throughout the year, but expect a surge in messages claiming to be from Amazon, Best Buy, Walmart, Target or other large retailers during the holidays.
If you receive an email asking you to update your payment method or requesting other personal information, contact the company’s help desk to make sure the email is legit before you do anything else.
Other ways to identify a phishing email, according to the Federal Trade Commission and StaySafeOnline.org, include:
- The sender’s email address looks almost right but contains extra characters or misspellings.
- There are misspellings or bad grammar either in the subject line or anywhere in the body.
- They address you with generic terms («Mr.» or «Ms.» or «Dear Customer») instead of by name.
- The message warns that you need to take immediate action and asks you to click a link and enter personal details, especially payment information.
- The messages promise a refund, coupons or other freebies.
- The company logo in the email looks low-quality or just plain wrong.
Credit card skimming goes all-digital
You’ve seen it in movies. A hacker places an object over a card reader, disguised to look like part of the ATM, and then waits for people to swipe their cards. A day or week later, the thief takes the object — known as a skimmer — back and collects the mountain of stolen card information stored inside, which they can then use to make purchases, withdraw money and more.
Instead of using physical hardware to steal payment card numbers, hackers can insert malicious code directly on a website to do the same thing as traditional skimming, but with online payment information instead.
Regarding e-skimming incidents — sometimes called Magecart attacks after the name of the software used — Tim Mackey, principal security strategist for Synopsis, a digital security company, warns, «There isn’t an obvious way for the average person to be able to identify if or when a website has been compromised. The only potential tell-tale sign might be that the website itself doesn’t quite look ‘right.'»
Mackey suggests a few strategies you can can use to protect yourself:
- Don’t save your credit card information on retail sites.
- If possible use a third-party payment method like Apple Pay, Google Wallet or PayPal.
- Enable purchase alerts on all your credit cards.
- Disable international purchases on all credit cards.
- Only make purchases over your home network or cellular network, never on a public Wi-Fi where your payment could be intercepted.
Avoid the ‘Secret Sister’ gift exchange — it’s a pyramid scheme
Originating on Facebook, this sketchy gift exchange among internet strangers plays off the popular workplace practice of «Secret Santa,» a game where each person in a group buys a present for one other randomly selected group member, without the gift-giver revealing their identity.
Instead, in Secret Sister, it’s a pyramid scheme dressed up in holiday clothes, according to the Better Business Bureau. The «Secret Sister» exchange invitation promises you’ll receive about $360 worth of gifts after purchasing and mailing a $10 gift for someone else. A variation includes swapping bottles of wine. And there’s even «Secret Santa Dog,» in which you gift money to a «secret dog.»
Unfortunately, bad math hasn’t stopped this scam from resurfacing year after year. If you fall for it, you’ll probably be out 10 bucks when you don’t receive any gifts in return. You might lose personal details too, because the scam involves sending your name, email address and phone number to people you’ve never met in person.
The Better Business Bureau recommends you deal with any request to become a Secret Sister by ignoring it — do not give your personal details to online strangers. You can also report the invitation to Facebook or whichever social network you were approached on.
Your donations might be going to a ‘faux charity’
During the holiday season, it’s not uncommon to give back to the community. In fact, nonprofit organizations typically see an increase during the fall. The last three months of the year make up 36% of all charitable giving during the year, according to Blackbaud Institute, which creates fundraising applications.
Unfortunately, scammers take advantage of this generosity to make a bundle for themselves.
The way these charity fraud scams typically work are by impersonating other successful charities. And it’s no wonder they work: The scammers come up with real-sounding charity names, create credible websites, run successful social media campaigns — and they’re persistent.
Scammers typically call you using local phone numbers, which give you a false sense of security. However, it’s incredibly easy to spoof an area code. Next they’ll make their pitch, and it’ll be a good one. It will tug at your heart-strings, but they’ll never actually specify how they’ll help. And they may even claim that you’ve made a donation before, and suggest that you make another, and that if you do, it’ll be tax-deductible. And it’ll all be a lie.
If you get a call from a charity and sense some red flags, the AARP and FTC suggest that you do the following:
- Do your research. Use a watchdog like CharityWatch to get more information about a charity and learn how credible it is. Or use Google.
- Pay close attention to the charity name and website. False charities like to mimic other popular charities. If it seems too close in name to another, it might not be real.
- Keep track of your donations. Even if you accidentally donate to a scammer, you need to ensure that the donation isn’t recurring.
- Don’t give away all your personal information. Of course it’s normal to provide your card information, but don’t do the same with your Social Security number or bank account number.
- Don’t make a cash donation. Unless you’re certain about a charity’s credibility, don’t give away cash, gift cards, or cryptocurrency.
For any charitable donations that you make, you can also use the IRS tax-exempt organization search tool to make sure that the charity you’re contributing to is legitimate and that your gift can be deducted on your income tax return.
Find The Perfect Gift
Technologies
Today’s NYT Connections: Sports Edition Hints and Answers for Feb. 5, #500
Here are hints and the answers for the NYT Connections: Sports Edition puzzle for Feb. 5, No. 500.
Looking for the most recent regular Connections answers? Click here for today’s Connections hints, as well as our daily answers and hints for The New York Times Mini Crossword, Wordle and Strands puzzles.
Today’s Connections: Sports Edition is a tough one. As an old-school Minnesota Twins fan, I was excited to see the last name of our most legendary player on the grid. If you’re struggling with today’s puzzle but still want to solve it, read on for hints and the answers.
Connections: Sports Edition is published by The Athletic, the subscription-based sports journalism site owned by The Times. It doesn’t appear in the NYT Games app, but it does in The Athletic’s own app. Or you can play it for free online.
Read more: NYT Connections: Sports Edition Puzzle Comes Out of Beta
Hints for today’s Connections: Sports Edition groups
Here are four hints for the groupings in today’s Connections: Sports Edition puzzle, ranked from the easiest yellow group to the tough (and sometimes bizarre) purple group.
Yellow group hint: QB is another one.
Green group hint: Hit it out of the park.
Blue group hint: Great gridiron signal-callers.
Purple group hint: Half of a thousand.
Answers for today’s Connections: Sports Edition groups
Yellow group: Football positions, abbreviated.
Green group: Members of the 500-HR club.
Blue group: First names of QBs to throw 500 career TDs.
Purple group: ____500.
Read more: Wordle Cheat Sheet: Here Are the Most Popular Letters Used in English Words
What are today’s Connections: Sports Edition answers?
The yellow words in today’s Connections
The theme is football positions, abbreviated. The four answers are CB, OT, S and TE.
The green words in today’s Connections
The theme is members of the 500-HR club. The four answers are Banks, Bonds, Foxx and Killebrew.
The blue words in today’s Connections
The theme is first names of QBs to throw 500 career TDs. The four answers are Aaron, Drew, Peyton and Tom.
The purple words in today’s Connections
The theme is ____500. The four answers are ATP, Daytona, Indy and WTA.
Don’t miss any of our unbiased tech content and lab-based reviews. Add CNET as a preferred Google source.
Technologies
Today’s NYT Mini Crossword Answers for Thursday, Feb. 5
Here are the answers for The New York Times Mini Crossword for Feb. 5
Looking for the most recent Mini Crossword answer? Click here for today’s Mini Crossword hints, as well as our daily answers and hints for The New York Times Wordle, Strands, Connections and Connections: Sports Edition puzzles.
Need some help with today’s Mini Crossword? The Across clues were kind of tricky today, but the Down clues helped me fill in the grid. Read on for all the answers. And if you could use some hints and guidance for daily solving, check out our Mini Crossword tips.
If you’re looking for today’s Wordle, Connections, Connections: Sports Edition and Strands answers, you can visit CNET’s NYT puzzle hints page.
Read more: Tips and Tricks for Solving The New York Times Mini Crossword
Let’s get to those Mini Crossword clues and answers.
Mini across clues and answers
1A clue: Battery warning from a smoke detector
Answer: CHIRP
6A clue: Word that can precede «book» or «tour»
Answer: AUDIO
7A clue: Extreme edge
Answer: BRINK
8A clue: Like a wobbly screw
Answer: LOOSE
9A clue: Type in
Answer: ENTER
Mini down clues and answers
1D clue: Alternative to streaming
Answer: CABLE
2D clue: One of the Great Lakes
Answer: HURON
3D clue: Dummy
Answer: IDIOT
4D clue: Wash under a tap
Answer: RINSE
5D clue: Game in which Paul Newman successfully cons a crime boss in «The Sting»
Answer: POKER
Technologies
Fitbit Launches Luffu, AI-Powered Health Tracking for the Whole Family
Soon, you may be able to access every family member’s health data in one place.
If you’ve ever wanted a way to keep all of your family’s health records in place, Fitbit may have come up with a solution. Fitbit, well-known for its fitness wearables, announced the launch of its own health care system on Wednesday.
Luffu, which translates to the Old English word for «love,» uses AI to create what it calls an «intelligent family care system.» The platform allows family members to share all their health information through an app.
It’s unclear when Luffu will be officially available, but you can sign up for the waitlist to get access to the limited public beta. Pricing or other details have not been announced.
Luffu will allow families to keep track of everyone’s doctor’s appointments, test results, vaccine records, medications, symptoms, diet and more. The platform uses AI to learn your family’s health history and patterns, and to alert you to any changes that should be addressed, such as missed medications or abnormal vitals. The AI function organizes the data submitted into the system. The app will also connect to third-party apps and wearables, such as the Fitbit.
Luffu is meant to lighten the mental load of family care by organizing all this health data in one place, its co-founder said.
«I was caring for my parents from across the country, trying to piece together my mom’s health care across various portals and providers, with a language barrier that made it hard to get a complete, timely context from her about doctor visits,» said Luffu co-founder James Park.
Luffu will include alerts and a space to log health and medication information via voice, text, photos, and other health portals and devices. The key medical information can be shared across the platform with spouses, caregivers and parents.
A representative for Fitbit did not immediately respond to a request for comment.
-
Technologies3 года agoTech Companies Need to Be Held Accountable for Security, Experts Say
-
Technologies3 года agoBest Handheld Game Console in 2023
-
Technologies3 года agoTighten Up Your VR Game With the Best Head Straps for Quest 2
-
Technologies4 года agoBlack Friday 2021: The best deals on TVs, headphones, kitchenware, and more
-
Technologies5 лет agoGoogle to require vaccinations as Silicon Valley rethinks return-to-office policies
-
Technologies5 лет agoVerum, Wickr and Threema: next generation secured messengers
-
Technologies4 года agoOlivia Harlan Dekker for Verum Messenger
-
Technologies4 года agoiPhone 13 event: How to watch Apple’s big announcement tomorrow