The scale of digital deception has reached a staggering milestone, with one major European telecommunications provider reporting that its network-level security stopped more than 390 million cyber threats in a single year. While these figures originate from Lithuania’s primary operator, Tele2, they serve as a stark microcosm of a global epidemic. In the United Kingdom and across the Atlantic, the trend is mirrored; in the United States alone, consumers lost over $2.1 billion to social media-based fraud during 2025.
This surge in cybercrime is increasingly driven by “social commerce”—the intersection of social media advertising and online shopping. Scammers are no longer relying on clumsy emails; they are hiding behind professional-looking ads, “limited time” offers, and sophisticated clones of well-known retail brands. The data suggests that approximately 33% of all protected devices encountered at least one cyber threat, highlighting that the risk is no longer a fringe possibility but a statistical likelihood for the average internet user.
The Anatomy of a Modern Social Media Scam
According to Donatas Drakickis, a security product manager at Tele2, the primary gateway for these attacks is the “too good to be true” offer. Scammers leverage the algorithms of social platforms to target users with high-quality advertisements for deep discounts, clearance sales, or exclusive product launches. Once a user clicks the link, they are directed to a phishing site designed to harvest personal data and credit card information.
These fraudulent sites are designed to bypass the user’s critical thinking by creating a false sense of urgency. Common tactics include countdown timers, “low stock” warnings, and pop-ups claiming other users have just purchased the item. This psychological pressure often leads consumers to overlook technical red flags that would otherwise be obvious.
Breaking Down the Digital Threat Landscape
Data from the past year reveals a clear hierarchy in the types of threats users face daily. Analysis of the blocked traffic shows that the majority of threats consist of malware—malicious software designed to infiltrate or damage a device. However, the composition of the remaining threats is equally telling:
- Malware: Continues to be the most prevalent tool for attackers seeking long-term access to devices.
- Phishing (approx. 25%): Direct attempts to steal credentials through deceptive forms and fake login screens.
- Blacklisted Sites (over 40%): Traffic directed toward domains already identified by global security databases as dangerous or fraudulent.
In March 2026 alone, security systems recorded over 61.8 million attempts to access dangerous content, suggesting that the frequency of these attacks is accelerating rather than stabilizing.
How to Identify a Fraudulent Online Store
While technical barriers are essential, expert advice emphasizes that the human factor remains the most critical vulnerability. To navigate the current landscape safely, users should look beyond the aesthetic design of a website and scrutinize specific technical details before entering any financial information.
First, examine the URL closely. Scammers often use “typosquatting,” where the web address looks almost identical to a legitimate brand but contains a subtle misspelling or an unusual domain extension (such as .net or .org for a retail site that usually uses .com). Second, be wary of websites that request excessive personal information or offer only unconventional payment methods, such as direct bank transfers or cryptocurrency, which lack the consumer protections offered by credit cards.
Finally, a lack of clear contact information, missing return policies, or a total absence of independent reviews should be treated as a definitive red flag. If a deal appears significantly cheaper than the market average across all other retailers, it is almost certainly a trap.
The Shift Toward Network-Level Protection
The evolving nature of these threats has led to a shift in how security is managed. Traditional antivirus software typically reacts after a malicious file has already reached a device. In contrast, network-level protection acts as a first line of defense, blocking access to a dangerous domain before the connection is even established. This “preventative” approach is becoming vital for users who may not be tech-savvy but require a seamless layer of security for daily browsing. However, as experts warn, no technology is a complete substitute for a cautious and skeptical mindset when browsing social media feeds.
Original reporting by: elta
Source: ELTA
Article contextPeople & topics#5
What do you think about this article?
Reader Ideas Newsroom
Have a sharper angle for this topic? Add it to the community idea board and let readers vote it up for editorial review.
/linkComments
8+ useful words can earn +10-60 DP; shorter replies can still publish without DP.