- Статьи
- Society
- Gift selection: fraudsters have intensified attacks on Russians under the guise of delivery
Gift selection: fraudsters have intensified attacks on Russians under the guise of delivery
On the eve of the New Year, fraudsters have stepped up attacks on subscribers under the guise of delivery, cybersecurity companies told Izvestia. First, the "support operator" calls, collects the data, and then uses it to obtain bank card details. Additionally, criminals put pressure on the victim, assuring them of the need to immediately confirm the order. In December, the number of such calls doubled. Increased attention to purchases during this period increases the credibility of such calls, experts say. About what other "festive" schemes are used by scammers, see the Izvestia article.
The holiday suits them
In Russia, there has been an increase in fraud related to fake delivery services — since mid-December, the number of such calls has already doubled, cybersecurity companies told Izvestia. A similar scenario was formed at the end of last year, in December the frequency of such attacks increases against the background of an increase in New Year's Eve orders, added Konstantin Larin, head of the Bastion cyber intelligence department.
— Previously, scammers were asked to simply name the SMS code to confirm delivery, — said the expert. — The attack has become more complicated today: First, the "support operator" calls, collects the data, and then uses it to obtain bank card details. All actions are aimed at ensuring that the interlocutor voluntarily dictates the necessary information. Additionally, the attackers put pressure on the victim, creating the need to immediately confirm the order.
Fraudulent schemes related to delivery are activated before every major holiday, but it is the New Year's Eve that is one of the most "profitable" periods for scammers, Ashot Oganesyan, founder of the DLBI data leak intelligence and darknet monitoring service, confirmed.
"People are getting ready for the New Year in a state of stress and excitement, there is an active exchange of personal and corporate gifts — all this creates a lot of opportunities for criminals," he said.
In the New Year period, the number of unwanted and potentially fraudulent calls reaches more than 200 million, said Alexey Karpunin, a partner at 5D Consulting.
"The active phase of such attacks began already in the second half of November and intensified as the holidays approached," the expert emphasized.
In addition, scammers play on the effect of anticipation — they report an allegedly unexpected gift from an acquaintance or an anonymous sender and, under various pretexts, involve a person in a dialogue, added Alexey Luzhnov, head of Bi.Zone AntiFraud. It can be "delivery", "address clarification", "correction of data for the invoice" or even a request to prepare to take a photo with a gift upon receipt.
— When the victim's interest is already formed, the attackers move on to the main goal. They ask you to dictate a text message code, link a new phone number, or provide access to your personal account," he said. — For greater effect, scammers manipulate the high value of the gift and the threat of losing it if the person does not fulfill the requirements. By this point, the victim has already invested time in communication, received emotions, and therefore more often agrees to further actions. In December, the volume of such scenarios increased by 20% compared to November 2025.
According to Konstantin Larin, the attackers use information from leaks, read out the changed home address or specify the delivery time. After that, they send a code in the message, which, according to them, is "needed to confirm the order."
"Most often, the victims are users aged 25-54 who actively use online platforms and have finances that can become a target for theft," he said. — Young people are unlikely to believe a call from the tax service, but they will trust scenarios with an emphasis on everyday events.
The expert also noted the development of reverse circuits. Individual users edit photos of received goods using neural networks, creating the appearance of an improper order status, seeking compensation. Some companies temporarily restrict the reception of photo reviews in order to develop verification methods and reduce the risk of such tricks.
If there was no scheme
In early December 2025, fraudsters called Elena from Moscow under the guise of delivery. The woman was addressed by her first name and patronymic and informed that a courier would arrive at the address in the near future.
— When I asked where the courier would arrive, they gave me the address of my residence, — the interlocutor told Izvestia. "I said I hadn't ordered anything, and they started fussily saying, 'Well, let's cancel the order.' At the same time, the voice was made extremely nervous and worried, so I did not immediately suspect deception.
Then Elena was sent an SMS with numbers, noting that this was the code for canceling the order. After she called the numbers, the "operator" hung up, and then the woman realized that she had been deceived. The Muscovite managed to block her bank cards.
On New Year's Eve, wealthy citizens face fake travel agencies offering hot tours, sellers of fake tickets for Christmas trees and performances, as well as sales of non-existent goods with huge discounts, Ashot Oganesyan recalled.
"The less well—off are more likely to fall for the bait of various "December payments," he said. — In addition to the New Year, all these schemes are united by the fact that at the last stage it is required to enter the card details, after which the criminals reset her account.
Yuri Tyurin, Technical Director of MD Audit (Softline Group), also noted an increase in the number of fraudsters using fake SMS messages and instant messengers about payment problems, delayed shipments or the need to confirm the address.
"Phishing links to supposedly online sites are common, where they ask you to enter your card or account information," the expert explained. — There are also scenarios with "refunds", gift certificates, New Year's raffles and corporate bonuses. The common feature of all schemes is an appeal to urgency and emotions, which is why users act faster than usual and do not have time to check the source of information.
One of the scenarios also involves promises of New Year's Eve discounts or additional cashback, Alexey Luzhnov said. The victim is offered to register via a link or confirm participation in the "New Year's newsletter" by dictating a code from an SMS.
— Then the scheme often develops in several stages, — said the expert. — The victim gets a call back and is convinced that during the first conversation she has already become a target of scammers. A personal account in a bank or on "State Services" is allegedly under threat. Under the pretext of urgently saving money, a person is persuaded to transfer money to a so-called secure account, assuring that they will definitely return later. In reality, the funds fall into the hands of intruders.
A hasty winter
Attackers actively use topics that concern users, said Sergey Golovanov, chief expert at Kaspersky Lab.
"It is important to understand that calls or messages asking for a code are only the first stage in a chain of interactions between attackers and victims," he said. — For example, first they call on behalf of the delivery service, then they allegedly call from an official organization and warn about hacking of a personal account in an important service and remind them of incoming codes as evidence.
In the future, the scammers continue to intimidate users: some illegal actions were allegedly committed on their behalf, they ask them to "help with the investigation" and "follow instructions" - for example, to transfer money to the same "secure account".
— If a person notices that suspicious activity is unfolding in his profile on Gosuslugi, it is urgently necessary to stop any communication with unknown people, if possible, block access to the account, and then personally contact the MFC, — the expert advised.
Before the New Year, people are more likely to fall for the tricks of scammers, because we are all in a bit of a hurry and are in waiting mode: orders, gifts, deliveries, confirmed Tatiana Goldman, a practical psychologist and member of the Association for Cognitive Behavioral Therapy. In this state, they act automatically more often and check the details less.
— In order not to lose your vigilance, it is important to pause. If you receive a delivery message, you should ask yourself: am I even waiting for this package? Real delivery services don't ask for SMS codes and card details," the expert said.
According to Alexey Karpunin, all these schemes continue to work precisely because people are in a hurry and lose their vigilance on the eve of the holidays. The end of the year is steadily becoming the peak of fraud activity, and the best protection remains a calm distance and an understanding of a simple rule: real delivery services and banks do not ask for codes, passwords, and card details over the phone, and any such requests are a reason to immediately be wary.
Переведено сервисом «Яндекс Переводчик»
