As online shopping surges during holidays and sales events, cybercriminals are finding creative ways to exploit unsuspecting consumers. One such deceptive tactic is the brushing scam, where unsolicited packages show up at your doorstep. While receiving free items may seem like a win, brushing scams can pose serious risks to your privacy and security.
A brushing scam occurs when online sellers or scammers send packages to unsuspecting people as part of a fraudulent scheme. Here’s how it works:
Brushing scams exploit your personal information, including your name, address, and sometimes more sensitive details.
Engagement Rings and High-Value Items
Victims report receiving fake or low-quality jewelry, such as engagement rings, they never ordered. Scammers use these items to inflate reviews on e-commerce sites. While the package may seem harmless, the fact that scammers know your address is concerning.
Additionally, QR codes often accompany these items, suggesting you “register” the ring. However, these codes can lead to phishing websites designed to steal sensitive information you enter, such as personal or financial details.
Unordered Amazon Packages
Amazon shoppers have reported receiving random items like electronics, toys, or household goods they never purchased. In many cases, the sender remains anonymous, making it difficult to trace the origin.
While these scams may seem like minor annoyances, they can indicate larger privacy or security issues:
If you’ve been targeted by a brushing scam, follow these steps to protect yourself:
Brushing scams are becoming increasingly common as e-commerce continues to grow. While these scams may appear harmless, they reflect larger issues with data misuse and online fraud. Understanding these schemes and how to respond can help protect your personal information and ensure safer online shopping experiences.
The rise of brushing scams is a reminder that not all unsolicited gifts are harmless. By staying informed and proactive, you can protect yourself from privacy breaches and fraudulent activity. As Cyber Monday and holiday shopping peak, double-check your accounts, monitor your packages, and stay alert to keep your personal information secure.
Not ready to sign up yet, but want to learn more? Attend our monthly webinar to see a demo of CyberHoot, ask questions, and learn what’s new.
Discover and share the latest cybersecurity trends, tips and best practices – alongside new threats to watch out for.
A recent discovery by cybersecurity firm Oligo Security has unveiled a series of critical vulnerabilities in...
Read moreA newly uncovered cyberattack campaign is exploiting Zoom’s Remote Control feature to infiltrate the systems...
Read moreGet sharper eyes on human risks, with the positive approach that beats traditional phish testing.