Back to News
Oliver E. Krings, CISSP, ABCP Chief Information Officer and Chief Information Security Officer

November 10, 2025

Holiday Cyber Alert: Scammers Already Warming Up Ahead of the Season

As we close the books on Cybersecurity Awareness Month in October, the warning signals are already flashing; cyber-criminals have shifted into high gear, targeting consumers and businesses alike ahead of the upcoming holiday rush.

Analysts report that as the shopping frenzy, travel bookings and charitable giving intensify, so do scams, especially classic vectors like fake shipping notices, too-good-to-be-true deals and bogus donation pleas. According to one expert, phishing attempts can increase by as much as 400% between October and the start of the holiday season.

Some of the latest trends include:

Advanced personalization and AI-powered lures. Fraudsters are now using more tailored messages, crafted from data about holiday purchases and seasonal patterns, making scam emails and texts harder to spot.

Fake-retail and “mega-deal” bait-and-switches. During the busiest shopping period of the year, fake online stores and deeply discounted “flash” offers are being used to lure victims into handing over payment details.

Gift card, charity and shipping scams remain front-and-center. Victims are seeing messages that appear as trusted brands, delivery services or charitable organizations asking for urgent action, payment or donations.

What this means for you:

With holiday activities already ramping up, it’s more important than ever to double-check before you click, donate or buy. Here are a few practical steps:

  • Hover (don’t click) on links in emails or messages to verify the web address; if it looks odd, don’t use it.
  • Beware of urgency (“Act now!”, “Only 2 left!”) — it’s a time-tested tactic.
  • When shopping online, use official sites or trusted retailers; avoid deals from unknown sellers with ultra-low prices.
  • For charities, verify registration and legitimacy before donating.
  • If you receive a shipping or delivery notification out of the blue, log into your account directly (don’t follow the link) to check status.
  • Be mindful of using public Wi-Fi or shared devices when making purchases or entering payment details.

Bottom line: Even though the calendar just turned from Cybersecurity Awareness Month, the heightened risk is already here. The holiday season may bring joy, but it also brings opportunity for scammers. Stay alert and secure and you’ll be far more likely to keep your season happy rather than hacked.