Skip to main content

Woburn, MA – February 7, 2020 –Kaspersky researchers detected a 9.5% growth in financial phishing in the final quarter of 2019, with holiday-season spam and scam activity also growing in numbers and variety.

The last quarter of the year is a fruitful time for cybercriminals, who prey on shoppers rushing to get a good deal ahead of the holidays. Now that the season is over, analysis of the threat landscape during the period provides a better understanding of changes in fraudulent activities. In 2019, the share of financial phishing continued to grow, surpassing half (52.61%) of all phishing attempts in Q4.




Financial phishing total












Financial phishing dynamics in 2019

Phishing remains an effective way to lure users into handing over their personal data and credit card credentials. Popular brands are most often used as bait. One of the examples discovered by Kaspersky was a fake Amazon page, offering users Christmas promotions so criminals could steal their Amazon Prime credentials.


An example of the Amazon phishing page

Such scams often prove effective. The analysis of phishing activity using the eBay and Alibaba brand names as bait showed significant growth just before big shopping holidays. Just a few days before Black Friday sales, the number of users trying to access eBay phishing pages grew four-fold, reaching over 8,000 attempts daily. These high levels of visits were maintained until mid-December, with an additional peak a week before Christmas. A similar pattern was seen with phishing versions of the Alibaba website.


The number of blocked attempts to visit phishing versions of eBay (left) and Alibaba (right) by Kaspersky users

Spam emails also showed slight growth in the holiday season, as well as a significant diversification in topics. Criminal schemes varied from promises of Christmas donations, to scams with attempts to steal cryptocurrency, to malicious emails sent to organizations as fake urgent Christmas orders.


Spam dynamics in 2019

Such holiday-related scams and spam emails are not exclusive to the Christmas season alone. Users in South East Asia also received typical “gift offers,” but instead tied to Lunar New Year.

“The holiday season is a time for impulse purchases and rash decisions,” said Tatyana Sidorina, security analyst at Kaspersky. “Pressure to get a good deal or buy presents can mean that users are distracted, making it easier for cybercriminals to take advantage of them. Of course, this does not mean that anyone should abstain from shopping ahead of the holidays – users just need to pay extra attention to their credit card payments. It is possible that a subscription or a delayed charge for a present for friends or family could turn out to be fraudulent, as criminals often do not use stolen data straight away.”


An example scam offer for a Samsung smartphone allegedly sent as a gift for Chinese New Year

Read the full holiday season spam and phishing report on

To stay safe from spam and phishing, Kaspersky recommends the following:

  • If you receive a link to a great offer via email, make sure to check the embedded hyperlink - sometimes it may differ from the visible one. If it does, access the deal page directly through the legitimate website
  • Only make purchases through official marketplaces and pay attention to the web addresses if you are redirected to them from other landing pages. If they differ from the official retailer, consider checking the offer you were redirected to by looking for it on the official web page
  • Use a security solution with behavior-based anti-phishing technologies, such as Kaspersky Security Cloud or Kaspersky Total Security, which will notify you if you are trying to visit a phishing web page
  • Never use the same password for several websites or services, because if one is stolen, all your accounts will be made vulnerable. To create strong passwords without having the struggle of remembering them, use password managers, such as Kaspersky Password Manager

About Kaspersky

Kaspersky is a global cybersecurity company founded in 1997. Kaspersky’s deep threat intelligence and security expertise is constantly transforming into innovative security solutions and services to protect businesses, critical infrastructure, governments and consumers around the globe. The company’s comprehensive security portfolio includes leading endpoint protection and a number of specialized security solutions and services to fight sophisticated and evolving digital threats. Over 400 million users are protected by Kaspersky technologies and we help 270,000 corporate clients protect what matters most to them. Learn more at

Financial phishing grew by 9.5% during holiday shopping season

Kaspersky analysis finds Black Friday, Cyber Monday and pre-Christmas shopping period saw spike in malicious activity
Kaspersky Logo