Cybercriminals harness kindness, targeting the compassionate to exploit generosity
This growing trend highlights the importance of vigilance amidst our intrinsic desire to help. By cultivating awareness and prioritising verification, we can defend ourselves and our communities against the exploitation of our kindness.This growing trend highlights the importance of vigilance amidst our intrinsic desire to help. By cultivating awareness and prioritising verification, we can defend ourselves and our communities against the exploitation of our kindness.
Image: File.
In an increasingly digital world, the rise of cybercrime has taken on a new and disconcerting face.
While traditional scams often evoke emotions of fear and urgency, more sophisticated criminals are now tapping into our inherent compassion and goodwill.
Anna Collard, Senior Vice President of Content Strategy and Chief Information Security Officer Advisor at KnowBe4 Africa, shed light on this alarming trend of exploiting positive emotions.
“Emotional manipulation is a common tactic in social engineering. We have all heard about fear-based tactics, but what’s alarming is that scammers also salve their schemes with feelings of empathy, compassion, and love,” Collard said.
One prevalent method involves creating false fundraisers or charities that claim to support vulnerable groups, such as children or the elderly, or address pressing issues like natural disasters.
“These scams are augmented by fake testimonials and sophisticated AI-generated content to create a façade of legitimacy,” she added.
Research supports Collard's assertion; emotional content, both negative and positive, is effective in manipulating individuals.
The typical “fight-or-flight” response triggered by fear-based scams creates immediacy, but positive sentiments can equally dull our critical thinking skills.
“The ‘warm glow’ effect of aiding others can lower our defences, which makes us less likely to question the veracity of these pleas,” she said.
When kindness is invoked, individuals may experience heightened emotional investment that feeds a dangerous cycle of self-manipulation.
Tactics such as the sunk-cost fallacy often ensnare victims who, after previously donating or investing, feel compelled to give even more.
Spotting trust-based scams
Among the most insidious examples of these scams are fake charity drives, which often impersonate well-known organisations like UNICEF or CANSA.
Such schemes thrive in communities with a robust sense of collective responsibility, such as the South African concept of ubuntu, where criminals intertwine their fraudulent operations with cultural values, framing them as community initiatives.
Collard identified other sophisticated scams, particularly romance fraud and “pig butchering” scams, where criminals cultivate long-term relationships over months before capitalising on an emotional bond to defraud their victims.
“These operations rely on carefully constructed psychological tactics, often focusing on loneliness and vulnerability,” she warned.
Steering clear of deception
So, how can individuals protect themselves?
Collard advises maintaining a cautious yet open-hearted approach.
“It’s essential to verify before you donate,” she said.
She encouraged the use of independent online resources to confirm the legitimacy of charities or causes before contributing.
Establishing a 24- to 48-hour pause rule for any emotionally charged financial decisions is also recommended.
Delaying donations, especially in the wake of appeals for help or potential investments, allows for clearer thinking.
Consulting with trusted friends or family members can further enhance decision-making.
“Opt for secure, traceable payment methods rather than cash transfers, cryptocurrencies, or prepaid cards,” she said.
Organisational responses
Organisations must take an active role in promoting cybersecurity awareness among employees.
Collard emphasised the necessity for training programmes to address emotional manipulation techniques alongside traditional technical threats. Including scenarios related to charity scams and community investment fraud in these trainings could prove beneficial.
“Verification should be seen as an act of care rather than cynicism,” she stated. .
Collard suggests that organisations develop materials that respect and acknowledge local cultural values while reinforcing security protocols.
Conducting phishing simulations rooted in local contexts can also aid in this effort.
Furthermore, instituting clear approval processes for charitable contributions and community investment initiatives can bolster organisational safeguards.
“Creating guidelines for employees engaging with external organisations reinforces a culture of verification,” she further said.
Understanding victim psychology
It’s crucial to approach victims of such scams with compassion rather than judgement.
Collard explains that romance scams and pig-butchering schemes create deep emotional dependency through intricate psychological manipulation.
“Victims often believe they are in loving and supportive relationships, making it difficult for them to sever ties. They require time, patience, and often professional support to restore their judgement,” she said.
Ultimately, Collard reminded us that harbouring cynicism is counterproductive.
“Cybersecurity awareness is about safeguarding your capacity to genuinely help others. Protecting yourself allows for legitimate charitable contributions and fosters meaningful, sustainable giving,” she stated.
BUSINESS REPORT