Black Friday shoppers & retailers face surge in cyber threats
UK shoppers and retailers are being urged to remain vigilant during the Black Friday sales as cyberattacks and scams are expected to increase across the busy shopping period. The warning comes as criminals boost their activity with ever more sophisticated techniques, targeting both consumers and businesses amid a sharp increase in online spending.
Rising threats
Latest government figures show that over 72,000 incidents involving cyber-facilitated fraud were recorded in the UK over the last year. In 2025, UK businesses lost an average of GBP £3.3 million to cyberattacks during the period. Retailers are seen as particularly exposed due to the sensitive data they process and their reliance on digital channels for payments and logistics.
"Cyber threats are now one of the most significant risks to business continuity, reputation, and financial health," said Zain Javed, Chief Technology Officer, Citation Cyber. "Retailers are prime targets because they handle vast amounts of sensitive data and rely heavily on technology to manage logistics, payments, and customer interactions. We're seeing attackers evolve rapidly, using sophisticated tactics that create maximum disruption and pressure to pay ransoms."
Phishing risks
Citation Cyber has reported a 50% increase in enquiries from businesses concerned about cyber threats in the lead up to Black Friday. One of the most effective ways criminals are targeting shoppers is through phishing scams, which attempt to steal personal information by impersonating popular retailers via email.
"Phishing scams are rampant during Black Friday. Always check the sender's email domain and IP address. If something looks off, it probably is. Hackers often mimic well-known brands to lure shoppers into clicking malicious links or sharing personal details. You can also cross-reference the email with the brand's contact-us or customer-service email to be extra cautious.
"If you click on the link the first thing to do is not panic, check the URL and don't share any personal details. Disconnect from the internet and also check for any malware. It's also important to change any passwords for sites that may have your personal information stored," said Javed.
Shopping safely
Several warning signs have been highlighted for shoppers. These include being cautious of pop-ups and checkout forms which request information multiple times or ask for payment details unexpectedly. Cybercriminals may use these tactics to gain access to sensitive information.
Redirects to unfamiliar websites, or pages reloading in an unexpected manner, are additional red flags. Shoppers who receive notifications about unfamiliar devices accessing their accounts are advised to disconnect from the internet, change all passwords, and notify the relevant service provider.
Retailer preparation
The risks are not confined to consumers. Businesses are being advised to treat the period ahead of Black Friday as an opportunity to stress-test their cyber defences, particularly payment systems and checkout processes. Javed recommends high-traffic simulations and penetration testing, in addition to keeping open channels of communication with customers to foster trust and confidence during the busy trading window.
"They should treat the few weeks left ahead of Black Friday as a full pre-event cyber stress test. Preparation is key. Running high-traffic simulations or penetration testing of checkouts and backend systems is key. However, most importantly, communicating with customers proactively and reassuring them that this preparation can also help build trust and encourage them to return for future purchases.
"From my work with retail clients, the businesses that plan for the surge, bake in security workflows, and ensure vendor strength outperform their peers. Black Friday isn't just a revenue peak, it's a cyberattack magnet," said Javed.
