Five rules to keep cyber criminals at bay

Hackers and distraction, phishing and online scams, cloning and data breaches. Holidaymakers in the crosshairs of cyber criminals on the hunt for identity and financial data, especially credit card data. Last summer, the theft of tens of thousands of identity cards and passports that were scanned when checking in and then offered for sale on the dark web caused a sensation. Every year, $1 trillion is lost worldwide due to scams, with 96% of victims never recovering their funds. A pervasive phenomenon also highlighted by the results of a study commissioned by Mastercard which reveals that 6 out of 10 Italians have received phishing e-mails or misleading text messages. More than half have been targeted by telephone scams and 45% have suffered attacks via social media. Italia, with around 1.4 million cards in illegal circuits, is one of the main European markets for this type of illicit traffic. This was revealed in the Annual payment fraud intelligence report: 2025 by Recorded Future.

"In 2025, cyber crime has taken on an industrial dimension: we are no longer talking about isolated attacks, but about an organised, scalable and increasingly sophisticated ecosystem," explains Luca Corti, Country manager Italia at Mastercard. "In this scenario, we are witnessing a shift in the approach to defence strategy: security cannot remain reactive, we need robust predictive frameworks in step with the advancement of cyber crime. As Mastercard, we are at the forefront of the development of advanced AI-based threat intelligence systems, with the goal of intervening before fraud occurs and reinforcing trust in digital". The multinational company is able to deal with over 200 cyber attack attempts per minute and more than 3.5 million phishing attempts, managing to block more than 70 billion fraudulent transactions in the last 10 years, for example. With the help of artificial intelligence and Mastercard Threat Intelligence, the dark web is monitored, enabling predictive defences.

Then there is the human element, the hurry, the distraction in creating passwords that make the criminals' job easier. Mastercard experts recommend using a unique password for each account, mixing letters, numbers and symbols. Pet names and dates of birth should be avoided because cybercriminals can easily spot them. A password manager can help you remember them all. Security doubles with two-factor authentication (2FA): Even the best password can be stolen. Two-factor authentication adds a second block such as a code sent to the phone, making it much more difficult for fraudsters to gain access. Multi-factor authentication should be enabled whenever possible.

1. Buy online where it is safe: Before entering personal or payment details, make sure that the address starts with https:// and that the padlock icon is present. If these details are missing or something looks suspicious, don't risk it. A safe checkout starts by recognising the signs of a trustworthy site.

2. Don't fall for 'too good and cheap to be true' offers. Scammers lure you in with unrealistic prices on much sought-after products and services. If you buy from a retailer you do not know, check online reviews and verify that they have a legitimate business presence.