Cashback promotions offered by banks and online marketplaces are a common tactic to attract new customers and retain loyal users. At the same time, cyber fraudsters exploit those incentives through phishing schemes that have persisted for years. This perspective comes from Dmitry Sakov, who leads the Digital Economy League testing laboratory and shares insights with socialbites.ca.
Security researchers note a predictable pattern around holidays. Demand rises and so do promotions from internet services. In late December 2023 a fresh scam plan appeared around cash refunds. Fraudsters posed as marketplace operators and promised customers rewards for delaying deliveries. The setup involved collecting personal or banking details as well as an SMS verification code. Once the attacker obtained the code, they gained access to the user’s account and stole goods or money. This is essentially a familiar phone scam that varies only in the information used to build trust. Phishing via phone remains the most prevalent form of fraud in Russia and nearby regions, and many calls from unknown numbers are suspected to be phishing attempts, according to the expert.
Experts also warn of a new fake refund scheme that surfaced in 2024. On the Telegram messenger, attackers create channels that mimic the branding of well known banks. They add users to these channels and post messages about refunds, inviting people to click on referral links and log in to their accounts. Even clicking such a link can be dangerous because it may install malware or expose passwords and other confidential information used for online banking and financial transactions, Sakov explains.
To shield themselves from attacks routed through Telegram channels, users should tighten their privacy settings to limit who can invite them to groups. Internet behavior habits matter: avoid following dubious links or entering data unless the source is clearly trusted. A quick check of a suspicious URL can help verify whether it matches the login address of the user’s online banking site.
When it comes to phone-based fraud, simple rules apply: do not trust calls from unfamiliar numbers, never share bank card details or SMS codes. For confirmation about promotions, users can contact the bank’s official support, review information on the bank’s website, or visit a physical branch. These practices help reduce risk and protect financial information from unauthorized access.
In addition to these strategies, staying informed about evolving scam trends remains important. Banks and financial services providers continue to issue warnings and guidance, and consumers are encouraged to verify any offer that appears too good to be true. The overarching message is clear: treat sudden incentives with skepticism, pause before sharing sensitive information, and rely on official channels for verification. This approach helps maintain security in online shopping and banking, especially during peak shopping periods when fraud attempts tend to spike.
Overall, the advice emphasizes caution, verification, and prudent digital habits as essential defenses against increasingly sophisticated phishing schemes that target consumers across North America and beyond, including Canada and the United States. The guidance from Sakov and similar experts forms a practical framework for individuals to protect their financial data whenever engaging in online purchases or using digital banking services. The goal is to minimize exposure to scams while preserving the convenience and benefits that come with modern online marketplaces and banking platforms, particularly during times of heightened promotional activity.