You might have never heard the term “bait and switch” before, but chances are, you’ve been a victim of one. You could call it a fraud, a scam, or a marketing technique – it all depends on how people use it. Let’s find out what it is and how it works.
Bait and switch: how does it work?
Let’s say you saw an ad for a wool jacket. The rock-bottom price seems too good to be true, but you click on it anyway. You’re taken to a legitimate-looking retailers’ website, but the jacket turns out to be sold out.
However, they also offer a very similar wool jacket. It’s much more expensive, but you’re already in love with the design, so you don’t mind paying for it. You might even feel lucky you found a similar jacket!
In this case, the ad is the “bait,” and the pricier jacket is the “switch.” A customer was tricked into spending more money than they intended at first. Later, when you realize what happened, you might feel cheated, but technically it is a legitimate way to get consumers to buy expensive items.
Unfortunately, retailers use the same technique to sell faulty or poorly made items too. You might have seen the terrible results of buying cheap prom dresses online. They most often don’t look anything like the picture on the online store. The beautiful image (usually stolen from designers’ websites and fashion shows) is the bait, and the cheap knockoff, which sometimes doesn’t even resemble the dress in the picture, is the switch.
Can bait and switch be dangerous?
Often people use the bait-and-switch technique to scam their clients. It is illegal and might cost you a small fortune. A cheap watch that doesn’t work will not be the end of the world. But if you preorder a non-existent gadget for a few hundred or even thousand dollars, it might end up being a very expensive lesson.
Unfortunately, this technique is also popular among cybercriminals. Here’s how it works:
The attacker creates a fake but legitimate-looking website.
They then approach high-profile websites with loads of daily traffic and buy some advertising space on their platform. Since the site the ad leads to looks safe, the webmaster or administrator sees nothing wrong with promoting it.
Once the ad (the bait) is active, the criminals change the website it leads to or redirects all traffic to another site (the switch), crawling with all kinds of malware.
If you click on the ad and malware ends up on your device, the attackers can use it to track your movements online, shower you with ads, or steal your credentials.
How can you protect yourself from the bait and switch scam?
There are some things to keep in mind whenever you browse online:
Scrutinize the ads before clicking on them. Are there any grammar mistakes? Does it look poorly photoshopped? Do the fonts look strange? If you have any doubts, better not click on it.
If an ad redirects you multiple times and the website you end up on has nothing to do with the ad itself – leave immediately and scan your device for malware.
Use common sense. If it seems too good to be true, it probably is. Look into the website you’re buying from – it might be known to often sell knockoffs. Saw a banner inviting you to see a recent blockbuster? Google the movie first – if it’s not even out of theaters yet, the website that offers you to watch it now is absolutely lying. Not to mention that it’s most likely illegal.
Use security software. Antimalware and antivirus will protect your device, and a password manager will guard your online accounts. Many people wait for something to happen before setting it all up. Don’t be that person – protect your devices and accounts now, and you will never have to deal with the consequences of a cyberattack.