skip to search skip to contact
 

The festive season should be about family, food, and fun – not fraud. Yet, as online shopping surges in December, scammers are working overtime. One of the most common tricks making the rounds is the fake purchase confirmation scam, recently highlighted by BBC Radio 4’s Scam Secrets. It’s simple, sneaky, and designed to catch you off-guard.

How the scam works

You receive an email that looks like a genuine order confirmation, complete with logos, formatting, and an order number. It thanks you for your purchase and offers helpful options to “cancel” or “dispute” the transaction, often with a 24-hour deadline to create panic.

Click the link or call the number, and you’re led straight into the fraudster’s trap. Instead of cancelling a non-existent order, you’re handing over personal and financial details. Spoiler alert: those moccasins you never ordered will never arrive.

Red flags to watch for

Before you click, check for these warning signs:

Suspicious Sender Details

  • A generic greeting like “Dear Valued Customer”.

  • Email address such as amazn-customerservice@gmail.com (legitimate companies use official domains, such as amazon.com).

  • Poor spelling or grammar.

Unusual content

  • Items you’d never buy, or an unusual purchase like 10 pairs of the same thing.

  • Aggressive language: “IMMEDIATE ACTION REQUIRED”.

  • Unrealistic urgency or countdown timers.

Technical clues

  • Hover your mouse over links; if the website address doesn’t match the brand, don’t click.

  • Unexpected attachments (.exe or .zip files).

  • Requests to enable macros or content—no genuine retailer does this.

Your festive fraud-prevention checklist

  • Keep a record of your purchases.

  • Enable two-factor authentication.

  • Use strong, unique passwords (password managers help).

  • Check your bank statements regularly.

What to do if you’ve already clicked

  • Contact your bank immediately; their fraud lines operate 24/7.

  • Change your passwords, starting with banking and email accounts.

  • Run a security scan on your computer or device if you downloaded anything.

  • Monitor your credit report for unusual activity.

  • Report it to Action Fraud (call 0300 123 2040 or visit https://www.actionfraud.police.uk).

  • Keep all evidence: emails, screenshots, reference numbers.

Why these scams work

Fraudsters prey on busy, stressed shoppers, not on “gullible” people. During the holidays, we’re juggling a million tasks, and urgency tricks us into acting fast. Remember, legitimate retailers will never:

  • Ask for sensitive details via email or text.

  • Demand you click links to avoid charges.

  • Create artificial urgency.

  • Request you enable content in documents.

If something feels wrong, trust your instincts. That moment of doubt? Pay attention to it.

Bottom line: Christmas should be about cracker jokes and too many mince pies – not handing your bank details to criminals. Stay alert, stay secure, and keep the festive spirit alive.

Champagne and Christmas decorations


Working on Christmas Day – your rights if you end up on the rota

Learn more
About ARAG Law
Learn more

Disclaimer - all this information was correct at the time of publishing