Have a fraud-free Christmas

December 23rd 2022

Here are our 12 tips of Christmas to help you and your services stay fraud-free.

Cyber criminals know we’re all busy in the run up to Christmas. And they know that there will be less staff on duty, and therefore cyber-attacks are less likely to be spotted.

But with a little preparation and thought, you can stay fraud-free this Christmas.

And remember, the Better Security, Better Care programme can help you to check your data and cyber security arrangements by using the Data Security and Protection Toolkit.

1. Brief your staff: Make sure your staff know that cyber-attacks are a real risk – especially at Christmas. Help them to recognise a basic attack and how to avoid them. Share this article, and check out our information on training.
2. Check your business continuity plans: Ensure staff know how to manage an information breach or cyber incident, especially when staff numbers may be down. You can use our template Continuity Plan for Data and Cyber Security.
3. Lock up on leave: If you’re going on leave, tidy up paper records so only staff who should see them can access them. Log off your work systems and close down your devices.
4. Avoid shopping on public WiFi: Christmas preparations are well underway, and many people will be using their phones to make purchases. Avoid this if connected to public WiFi, as they lack security features and are easy for scammers to hack.
5. Challenge tech support offers: Got a message claiming your computer is at risk and asking you to download special software or call a helpline? Tech support scams use scare tactics to trick you into unnecessary services to fix problems that don’t exist. Don’t click or call. Check your organisation’s official tech support.
6. Watch out for WhatsApp: It’s a quick and easy way to contact colleagues. But WhatsApp scams are on the increase. If in doubt about a message you receive, call the person who allegedly sent it.
7. Beware of emails bearing gifts: If you’ve been sent an e-gift or e-card via a link and don’t recognise the email sender, it’s probably spam. Search online for the e-card or e-gift company name plus the word ‘scam’. If it’s allegedly from someone you know, check with them if they have sent you something. Check out our information on email scams.
8. Dodge delivery scams: Got a text or email saying there is a package for you and asking for a payment to release it, or for details like date of birth or bank account? Don’t engage and don’t click on any links. Only interact with the delivery company via their official app or by finding their website yourself.
9. Don’t fall for unbelievable offers: If it looks too good to be true, it probably is. Scam websites use low prices to lure bargain-hungry shoppers to quickly sell fake, counterfeit or non-existent items, and capture your personal details.
10. Stay safe on socials: Don’t be lured into giving away passwords or sensitive data on your social media channels. They are not private spaces and criminals may be able to guess your passwords and personal details from information that you share.
11. Report cyber-attacks: If you are attacked, report it to Action Fraud either via their website or by calling 0300 123 2040. Find out more about what to do.
12. Get expert support: Our Better Security, Better Care programme can help you to improve your data and cyber security arrangements by using the DSPT. It’s free – and that isn’t a scam! Maybe use that Christmas to New Year period to complete your DSPT.

It’s been another tough year for everyone in social care. Thank you for everything that you are doing to support for so many people. Stay safe and well this season – in reality, and in the virtual world.

Merry Christmas and a Happy New Year.

Follow #FraudFreeXmas on social media for more advice.