NI warning over retail app hacking after four victims identified in one week

The PSNI have some accounts are becoming compromised due to weak or reused passwords

Police have issued a warning to shoppers in the run-up to Christmas following increased reports of attempts to hack retail app customer accounts.

The PSNI have said that people need to take extra precautions with their online shopping accounts following a number of incidents where hackers have attempted to access people’s accounts on retail apps in order to defraud them.

Across the UK, the Protect Network has observed a rise in incidents where criminals gain access to customer accounts and use them to make unauthorised purchases, including ‘but now and pay later’ transactions and online credit options.

READ MORE: 9 PSNI officers assaulted during four incidents in Derry City & Strabane over the weekendREAD MORE: PSNI appeal after collision involving a cyclist in Cullybackey

Police have warned that some accounts are being compromised due to weak or reused passwords, and in certain retail apps, security features may rely solely on password access, meaning anyone who obtains or guesses the password, could gain entry to the account. Once inside, criminals may be able to change delivery details, make credit purchases, or alter linked payment methods.

Inspector Tori Anderson from Scamwise said: “With Christmas fast approaching, we know more people are shopping online and using retail apps, especially with the amount of great deals and sales already happening. However just this week, we have identified four victims, who have sadly been targeted through online retails apps. “We are reminding the public to take simple but important steps to protect themselves. Weak or repeated passwords make it easier for criminals to access accounts and create unauthorised purchases. We strongly advise the public to use stronger online passwords whether that is based on the National Cyber Security Centre’s (NCSC) ‘Three Random Words’ guidance or through the assistance provided by a Password Manager. “Where available, additional security features such as Two Step Verification or Passkeys should be used to help secure online accounts. For further support and guidance, the NCSC’s Cyber Aware webpage can be found at www.cyberaware.gov.uk. “At this time, we will continue to liaise with Action Fraud and our Scamwise partners to monitor local trends across NI, sharing updates as more information becomes available. Together, lets prevent scammers from ruining Christmas! “If you have been a victim of a scam, report it to police on 101, to your bank immediately, or online at www.actionfraud.police.uk or you can call 0300 123 2040. Information and advice is also available at http://www.nidirect.gov.uk/scamwiseni or via the ScamwiseNI Facebook page @scamwiseni.”