With Black Friday just three days away, UK households are being urged to heighten their vigilance against a predicted surge in sophisticated online scams targeting the busy shopping period.
Rising Cyber Threats Target Shoppers and Businesses
Cybersecurity firm Citation Cyber has issued a stark warning to both consumers and retailers as the holiday shopping season approaches its peak. Black Friday falls on November 28 this year, followed closely by Cyber Monday on December 1.
Official government data reveals the scale of the problem, with over 72,000 cyber-facilitated fraud incidents recorded across the UK in the past twelve months. The financial impact on businesses has been severe, with companies losing an average of £3.3 million to cyberattacks in 2025 alone.
Zain Javed, Chief Technology Officer at Citation Cyber, emphasised the severity of the threat. "Cyber threats are now one of the most significant risks to business continuity, reputation, and financial health," he stated.
Why Retailers Are Prime Targets
Javed explained that retailers present particularly attractive targets for cybercriminals due to the vast amounts of sensitive customer data they handle and their heavy reliance on technology for managing logistics, payments, and customer interactions.
"We're seeing attackers evolve rapidly, using sophisticated tactics that create maximum disruption and pressure to pay ransoms," Javed added.
The growing concern among businesses is reflected in market demand, with Citation Cyber reporting a 50% increase in organic leads this year as small and medium-sized enterprises seek stronger cybersecurity protection.
Essential Protection Strategies for Shoppers
Javed's primary advice for consumers centres on scepticism toward seemingly legitimate communications. "Phishing scams are rampant during Black Friday," he cautioned. "Always check the sender's email domain and IP address. If something looks off, it probably is."
He recommends cross-referencing suspicious emails with contact information from the brand's official website and provides crucial steps if you've already clicked a suspicious link:
- Don't panic - check the URL immediately
- Do not share any personal details
- Disconnect from the internet and check for malware
- Change passwords for sites storing your personal information
Shoppers should also remain alert to other common tactics used by hackers:
Be cautious of pop-ups and checkout forms that request information repeatedly or ask for payment details in unexpected places.
Watch for unexpected redirects - if a page suddenly reloads or takes you to an unfamiliar site, treat it as suspicious.
Monitor for unfamiliar devices - notifications about unknown devices or networks accessing your account likely indicate an attempted hack. If this occurs, disconnect from the internet, change all passwords, and report the issue to your service providers immediately.
