As Diwali 2025 approaches on October 20, the excitement of lights, sweets, and online shopping deals is overshadowed by a sharp rise in cyber frauds. Cybersecurity reports indicate a 40% surge in scams during this festive period, with phishing attacks and WhatsApp-based frauds exploiting the rush for discounts and gifts.
Fraudsters are getting smarter, using AI for personalized lures and deepfakes to mimic trusted brands or celebrities endorsing fake deals. In India, where e-commerce sales skyrocket, nearly one in three people has encountered such tricks. Here’s a breakdown of the most common phishing and WhatsApp scams to watch out for, based on recent alerts from cybersecurity experts and police.
1. Fake Diwali Discount Vouchers and Offers
Scammers flood WhatsApp groups, SMS, and emails with “exclusive” coupons for massive discounts on platforms like Amazon or Flipkart. These links lead to phishing sites that steal your login details or payment info.
Red Flag: Offers that seem too good to be true, like 90% off on electronics, or urgent “limited-time” messages.
Real-World Hit: Victims report losing hundreds after entering card details on bogus sites mimicking festive sales.
2. Phony Lottery or Gift Wins
You get a WhatsApp message or call claiming you’ve “won” a Diwali hamper, iPhone, or cash prize from a brand draw. They ask for a small “processing fee” or OTP to claim it—leading straight to account drainage.
Red Flag: Unsolicited wins from unknown numbers, or demands for upfront payments.
Trend Alert: This has spiked with AI tailoring messages to your recent online activity, making them feel personal.
3. Bogus E-Commerce Websites and Pop-Ups
Fake sites pop up in search results or ads, copying real ones but with slight URL tweaks (e.g., amaz0n.in instead of amazon.in). They harvest data during “Diwali flash sales.”
Red Flag: Poor grammar, no HTTPS lock, or fake reviews.
Impact: A recent case involved a woman scammed via a popular site’s lookalike after ordering gifts.
4. QR Code and Payment Gateway Traps
Scammers share QR codes on WhatsApp for “easy Diwali donations” or “quick payments,” which redirect to malware-laden pages stealing banking credentials. Fake gateways also appear during checkout.
Red Flag: QR codes from unverified sources or embedded in festive memes.
Pro Tip: Always scan via official apps.
5. Fake Charitable Donations and Travel Bookings
Heartstring-pullers: Messages urging “Diwali aid” for the needy, linking to phishing donation pages. Or counterfeit portals for cheap festival trips/hotels that vanish after payment.
Red Flag: Pressure for instant transfers via UPI or links without charity verification.
Rise in 2025: Deepfakes of celebs promoting these have fooled many.
6. Personalized AI-Driven Deepfake Calls
Using scraped social media data, fraudsters send voice notes or calls mimicking family/friends in “need” during Diwali, or deepfake videos of executives approving fake deals for businesses.
Red Flag: Emotional urgency or voices that sound “off.”
7. Recycled Packaging Scams
A sneaky offline-online hybrid: Thieves grab discarded delivery boxes with your address and details, then pose as “delivery agents” via WhatsApp to phish for more info or “reshipment fees.”
Red Flag: Follow-up messages about “lost packages” from unknown contacts.
How to Stay Safe and Light Up Diwali Scam-Free
Don’t let fraudsters steal your joy—here’s a quick shield:
• Verify Everything: Go directly to official websites/apps (type URLs manually) and check for blue ticks on social media.
• Spot the Fakes: Look for HTTPS, spelling errors, and unreal deals. Use tools like Google Reverse Image Search for suspicious pics.
• Secure Your Tech: Enable two-factor authentication, avoid public Wi-Fi for shopping, and never share OTPs.
• Report Fast: Forward scam messages to 7726 (for SMS) or report on cybercrime.gov.in. Block and delete unknowns on WhatsApp.
• Smart Habits: Shred labels on packages before binning, and double-check charity legitimacy via GiveIndia or similar.
• For Businesses: Train staff on phishing and monitor vendor links during sales spikes.
Stay vigilant, shop smart, and celebrate safely—Diwali’s glow is brighter without the shadows of scams. If you’ve spotted one, share in the comments to spread awareness!