Stay informed about cyber awareness training topics and mitigate risk in your organisation.

Scam of the Week – Aldi customers urged to stay away from online phishing scam

Aldi customer phishing scam

Shoppers are being warned to avoid a fake £85 Aldi voucher that is being widely shared on Facebook, Twitter and WhatsApp.

The scam first surfaced over 2 years ago but has made a festive reappearance as fraudsters step up their efforts to scam unsuspecting individuals in the run up to Christmas.

How The Aldi Scam Works

The voucher offers shoppers £85 off their next grocery shop if they fill in an online form and submit their personal details.

Upon clicking the link, the user is directed through to a fake survey page that asks them to submit their name, address and date of birth before they can print off the fake voucher.

Victims are then encouraged to like and share the post on their own social media pages to ensure the scam reaches as wide an audience as possible. Unfortunately, by doing this the victim will spam all their contacts with the same bogus offer and the cycle will continue.

As is the case with all these types of scam, the voucher is just a devious way for criminals to steal personal information that can be used to commit identity fraud or sold on to criminal third parties.

Fake Aldi Voucher (Source: The Metro)

Aldi phishing scam

Aldi commented on the scam that has been widely reported this week: “We can confirm that this is not an official Aldi voucher. It is a fraudulent offer that cannot be redeemed in our stores, and we strongly advise that you do not complete any personal details. Please rest assured that this is currently being fully investigated.”

Aldi Scam In Ireland

In a separate scam, Aldi Ireland also warned Irish shoppers not to fall for a €125 Aldi voucher offer that has been circulating on WhatsApp.

There has been a notable increase in these types of scams in recent weeks and consumers should treat these online vouchers and offers with extreme caution.

How To Avoid Social Media Scams

To avoid being scammed on social media, there are a number of precautionary measures you should take:

  • Never click on links requesting personal information –These links will nearly always be created to steal sensitive information or deliver malware. If you’re unsure if the request is legitimate or not, go directly to the company’s official website to see if they are running any promotions.
  • Only enter personal information on a secure website – The URL on a secure site will always begin with a ‘https’. The ‘s’ stands for secure and ensures that all communication between your browser and the website you are visiting is encrypted.
  • Look for the blue tick – If you’re on the Facebook page of a legitimate business, it should have a blue tick which means it’s a verified account.
  • Check when the page was created – Find out when the page was created, what content is listed within in it, and how far back the posts go. If the page has only recently been created, there’s a good chance you’re on a fake page.
  • Use unique login details for each account– It’s always best to use a unique username and password for each site so that in the unfortunate event of being phished, the crooks won’t have access to your other online accounts.
  • Install Anti-Virus Software – The installation of anti-virus software will help detect threats on your computer and block unauthorised users from gaining access.
  • Use enhanced privacy settings – Regularly check and adjust your privacy settings to restrict what people can and can’t see on your profile.

Despite the increasing sophistication of phishing attacks there are a number of ways you can protect yourself online. MetaPhish has been specifically designed to protect businesses from phishing and ransomware attacks and provides the first line of defence in combating cyber-crime. Get in touch for further information on how we can help your business.

about the author

sharing is caring

Share on linkedin
Share on twitter
Share on facebook

you might enjoy reading these

UK GDPR Series Available Now

Privacy is an ongoing concern for every organisation, however, the notion of consent isn’t without its complications. To help organisations navigate data protection protocols, we
Read More »

Seasonal Phishing Templates

Phishing is a year-round activity for cybercriminals, and just like retailers, they use seasonal events as an opportunity to cash in. Seasonal occasions, including St
Read More »

Request Demo

The personal information that you provide to us in this form will only ever be used by MetaCompliance (as the Data Controller) for the following specifically defined purposes:

  • email you content that you have requested from us
  • with your consent, occasionally email you with targeted information regarding our service offerings
  • continually honour any opt-out request you submit in the future
  • comply with any of our legal and/or regulatory obligations