Skip to main content

Received an odd looking email? Phishing scams you need to keep an eye out for around Christmas


There's never a good time to lose a ton of money to an unscrupulous person over the internet, but the worst time would have to be Christmas. It's a period of intense gift buying, organising and for many people, stress - and unfortunately, scammers will use this to their advantage. 

Phishing is the technique of choice for many hackers and scammers online. It involves sending out mass emails, using a fake website or similar online trickery to convince you to give up your information, or install some malware on your machine that will give up your information for you. 

Whether it's a dodgy contact form, an iffy website or just a virus-laden link landing in your inbox, the aim is to bypass your normal thought processes and convince you to hand over your information as quickly as possible - because the longer you stay looking at a phishing email, the more likely the cracks are to appear. 

There are a few ways phishers can get you to do this; it might be a very tempting offer, or a worrying emergency - but it's likely to have a sense of urgency about it. Because if something is urgent, you're more likely to act fast and think later. Here are the top phishing scams you need to keep an eye out for around Christmas time.

The online shopping scam

This fun little scam is especially effective at Christmas, because so many of us order our gifts online from a few different websites. This is more likely to hit your screens in email form, although it's possible you may find your way to a fake website when you're just browsing.

This email or website will offer an insanely great offer, and you know there's going to be some urgency behind it too - a countdown clock, or 'this great deal only applies to the first 100 customers'. It's designed to pressure you to click a link, pop your card details in, and then the scammers are away.

The best way to navigate this one is to google the reviews for a store before you buy, and let their previous customers vouch for them. When you are inputting your card details, you should be able to see the little green lock in the corner of the URL bar - this means the website is secure. If you can't spot a lock, or you can't find anything about them online, steer clear - it's definitely a scam.

The refund scam

Everyone feels the pinch around Christmas, so what could be better than a refund or an unexpected tax rebate? These kinds of scams will almost always turn up in your inbox, and claim to have a few hundred pounds for you because you overpaid in tax, or you have a refund that's finally been processed. 

Around Christmas time, this scam is a real money spinner. If you receive one of these emails, it's probably going to ask for your bank details to 'process the payment'. If you do pop those details in, it's a merry Christmas for whomever ends up with them.

We can't speak for other countries, but in the UK you will never receive a tax rebate over email - they'll always go directly to your address, and you'll always receive them by post. For refunds from online stores, it is extremely unlikely that they'll ask you for your details over email - any money should just go back on the card or account you paid on.

The banking scam

The majority of us would have seen this scam in our inboxes now and again, but at Christmas, with so much money moving around, it's easy to get taken in. This scam will again appear in email form, and will purport to be from your bank or sometimes a banking service like PayPal

The email will claim that you need to confirm your banking or PayPal details, or your account will be closed imminently. It might also suggest that you are overdrawn, and you need to confirm your details to avoid any charges. 

Banks will never email you asking for your information - if they want to contact you, they'll send you a letter. If you get one of these emails, don't click a link, don't enter any information or reply, just send it straight to spam.

The shipping email scam

If your Christmas is arriving courtesy of Amazon, or eBay, or any other online store for that matter, you're probably receiving dispatch and shipping emails for the majority of December. As such, this phishing email can blend in amongst them. 

This email is going to look like your basic shipping or dispatch email, with a link to track your parcel, print a form to go and collect it or a link to have it redelivered. It might send you to a site that looks similar to the one you were expecting, which can make the scam all the more convincing.

This is probably the most difficult one to avoid, because around Christmas it's difficult to keep track of the couriers delivering all your parcels. The vast majority of couriers will leave a delivery note if they've attempted delivery, so if you're missing one be a little suspicious. It's also worth checking for typos in the email and the sender - and if you're really on the fence, head directly to the website you bought something from and inquire there. 

So what can we do about these scams? 

Unfortunately there's not yet any anti-virus software that promises to eradicate 100% of spam mail from your inbox (it's likely some of your personal emails would be thrown out for the greater good). But for our money, we'd recommend F-Secure and Sophos. Keep your anti-virus updated, and do regular scans, just in case any nasties have found their way onto your machine. 

The most important thing to do when you receive an email you weren't expecting, or end up on a weird looking website is to slow down. Check the sender, check for spelling mistakes, and check the formatting of the email or website itself - all of these are little indicators that you might be about to get phished.

For the people in the back claiming they don't have anything worth stealing, or don't store their card details online, it's still worth exercising caution. Viruses can encrypt your files, making them impossible to open without paying off the hackers. One password, if used multiple times, can be used to get into accounts where more of your information is stored. What might not seem valuable to you can be incredibly valuable to a scammer. 

If you're in any doubt, take a screen shot and send the photo (but not the original email or website!) to your IT support team. Stay vigilant, and send those phishing scams to Junk.

Tweet us @TranscenditUK


The Transcendit Way

Transcendit understand that when you choose to work with us, whether we're taking care of your IT, app or web development, you're trusting us with part of your business. So whether we're looking after your computers, phone systems or servers we always do things 'the Transcendit way'.

The whole of our team adhere to the same values, beliefs and policies - the principles that were written when Transcendit first formed in 2000. Whether you come to us for cloud services or recovery backup you can be confident that you'll always receive the same excellent service.

The Transcendit way outlines how we do business; following the same straightforward principles with every client and customer, regardless of how big or small they may be.

That means we get to know you and your business. We offer you a friendly, professional and efficient service, and we'll always be honest with you.
We understand that not everybody speaks fluent IT, so we try to explain things in a way that is simple and clear. We always spend as much time as is necessary explaining things to you.
If you need to talk to us about something, no matter how insignificant, we are only ever a phone call away – and we’re never too busy to make you a cup of tea and have a sit down with you in person.
We understand how frustrating it can be when things are late. When we schedule an appointment with you, we are there when you’re expecting us. If something prevents us from getting there, we always call you in advance to let you know.
Sometimes things can go wrong, but we never lie to you or try to cover something up. If things go askew we tell you what’s happened and how we plan to prevent it affecting your business.
We want you to continuously benefit from working with us. We regularly discuss your business and make suggestions for improving systems and processes wherever we can – but we never try to push you into a purchase.
When we quote a fixed price, that's always the amount we charge – you won’t find any nasty surprises on a bill from us. If you are paying by time and materials, we inform you if our approximations could change.
We understand the importance of privacy for your business and your customers. We respect the confidentiality of your data, and we will never pass on your information to third parties.
We appreciate it when you take the time to give us feedback. A system called CustomerSure records our client's responses, so you can trust that our reviews are from real people.
Find out what they're saying here.
The service from Transcendit is beyond first class. Every time i have had to use it, all staff have been so patient and helpful with me as i am the antithesis of tech savvy. I have expressed my satisfaction with our factory leaders Jim and Steve and had asked them to pass on my sincere thanks for your help. Aaron today was exceptional at walking me through the pre-migration process from Citrix to Azure. I wish all companies that I deal with provided this first class service. Peter Howlett, Director of Design, George Smith

Based on 12075 reviews our customers rate us 9.8/10. Reviews and ratings by Customersure. 09-October-2024

Transcendit are proud sponsors of CHUF, the Children's Heart Unit Fund.

Transcendit is a Microsoft Gold certified partner
VMWARE partner
Vipre partner
IPCortex partner
WithSecure partner
DELL partner
Barracuda partner
Veeam partner
N-Able partner