The phrase "back to school" is synonymous with the fall season for many, and for cybercriminals looking to capitalize on students, distracted shoppers, people away from home and the holiday season cusp, so is "back to fraud."

Autumn not only brings phishing and other related social engineering attacks geared toward the season, it also extends to many trending fraud schemes and malware.

As cybercrime incidents continue to climb, consumers and businesses will likely observe elevated levels of malicious emails and phishing heading into fall, cybersecurity experts warned.

"Right now the growing threats to many people are what has been extremely successful [for cybercriminals] this year, in particular ransomware and phone scammers," Paul Kubler, digital forensics and cybersecurity examiner for the New York City-based cybersecurity firm LIFARS, said. "I see this increasing as consumers are continuing to fall victim to these threats in growing numbers."

Here are some trending and seasonal threats experts pinpointed:

 

 

 

 

 

 

 

 

back to school fraud tips1. Out of footprint activity.

Credit unions will start to see out of footprint activity because many college students head out of town for school.

"We like to encourage credit unions to encourage members to keep contact information updated so we know where people are, and where they are transacting and doing activity. It's very important to do that," John Buzzard, strategic technical fraud account executive for the Rancho Cucamonga, Calif.-based CO-OP Financial Services, said.

The main goal of fraudsters is to mimic legitimate cardholder activity. Therefore, anytime members are away for an extended period of time, notifying issuers helps them detect potentially fraudulent transactions.

Criminals today regularly purchase card numbers based on zip codes and use them to create counterfeit cards within those same zip codes. When card issuers can't tell the difference between legitimate and fraudulent card activity, it creates a huge problem.

Buzzard also said credit unions have a great opportunity to educate their members about school relocation or extended travel notifications.

"It's a process where you notify your card issuer that you plan to be out of your normal area for a time so they could be aware of it for fraudulent activity," he said.

back to school fraud tips2. College student scams.

Students with new emails and a modest level of technology experience are prime targets for fraudsters as well. And their attacks might take on various forms.

Scammers may try to take advantage of the influx of new students by luring new laptop owners with fake Microsoft security emails and calls, or impersonating new schools to steal personally identifiable or sensitive personal information.

Credit card credential theft can also increase as students try to save money by buying books from alternative dealers and sites, Kubler warned. Outright textbook piracy may also come with free viruses and other malware.

Then there is tuition wire fraud, which attempts to coax money out of victims by convincing them they have an unpaid tuition bill.

back to school fraud tips3. Bogus email and phishing schemes.

During the back-to-school months, criminals are likely to instigate a common email fraud scheme that involves sending a message that promises a reward, such as a gift card from a major retailer. Criminals ask their victims to complete a survey, which includes the inputting of personal information such as home addresses, Social Security numbers and birthdays. Once the fraudsters have enough details, they use the survey applicant's data to apply for credit cards.

Another cybercriminal scheme is to obtain teachers' credit union email lists so they can hit members with spear phishing attacks, which ask members to update their information and then lures them to fake pages designed to capture usernames, passwords and personal credentials.

Read a full account of fall fraud issues in the Aug. 17, 2016 print issue of Credit Union Times.

 

Can your cybersecurity strategy handle an attack? Do you have the latest tools and techniques to prevent fraud and data breaches? Get them and more at our FREE Second Annual Data Breach Defense Virtual Conference on September 7. Plus, you'll also learn the latest trends in cybersecurity including incident responses and be able to immediately download white papers, and so much more. Register for FREE Now!

NOT FOR REPRINT

© 2025 ALM Global, LLC, All Rights Reserved. Request academic re-use from www.copyright.com. All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.

Roy Urrico

Roy W. Urrico specializes in articles about financial technology and services for Credit Union Times, as well as ghostwriting, copywriting, and case studies. Also: writer/editor of a semi-annual newsletter for Association for Financial Technology since 1997 and history projects funded by the U.S Interior Department, National Park Service and Warren County (N.Y.).