Cybercriminals Exploit Valentine’s Day with Romance Scams, Phishing Attacks
As Valentine’s Day approaches, cybercriminals are ramping up their efforts to exploit consumers through romance scams, phishing campaigns and fraudulent e-commerce offers.
According to reports from Comparitech, Bitdefender, and McAfee these scams have already cost Americans dearly, and
with the increasing sophistication of scams — many now enhanced by artificial intelligence — individuals and businesses must remain especially vigilant.
A report from Comparitech estimated that 58,734 people in the U.S. fell victim to romance scams in 2024, resulting in losses of approximately $697 million.
While these figures represent a slight decline from 2023, when losses reached $702.7 million, the financial toll remains heartbreaking.
Rebecca Moody, Head of Data Research at Comparitech, explained Valentine’s Day offers scammers the perfect opportunity to prey on those who are still looking for love.
“Whether they’re setting up fake profiles on dating websites, reaching out with romantic gestures, or sending phishing emails disguised as Valentine’s e-cards, scammers will take advantage of people’s vulnerability this Friday,” she said.
Romance Scams Continue to Trap Victims
Romance scams remain one of the costliest forms of online fraud, with scammers often using emotional manipulation to persuade victims to send money or personal information.
Moody highlighted several key warning signs that individuals should be aware of to avoid falling victim to these schemes.
“Classic red flags include being asked to move conversations to private channels like WhatsApp or Messenger, receiving an unusually quick declaration of love, and hearing excuses for why they can’t meet in person or talk on the phone,” she said. “Most concerning is when they start asking for money — whether for cryptocurrency investments, gift cards, or supposed emergency expenses like medical bills or travel costs.”
She advised individuals to conduct thorough research, review past messages for inconsistencies, and use tools like Google’s reverse image search to verify profile pictures.
“While we all want to believe in true love, if this new relationship seems too good to be true, it probably is,” she cautioned.
AI Making Scams More Convincing
As phishing and online scams evolve, artificial intelligence has become a powerful tool for cybercriminals. AI-generated profiles, chatbots and deepfake videos are being used to create increasingly sophisticated scams that can bypass traditional detection methods.
“In the past, a poorly written email from a ‘Nigerian prince’ might have been an obvious scam, but today’s fraudsters are far more sophisticated,” Moody said.
AI allows scammers to create unique profile pictures that evade reverse-image searches, generate chatbot conversations without spelling errors and even send deepfake videos to make their personas appear more legitimate.
These advancements mean that victims may be less likely to recognize a scam, leading to higher success rates for fraudsters.
“Sadly, AI is likely to become a vital tool for scammers, and one that may see even more people falling victim in the coming year,” Moody said.
Surge in Valentine’s Day-Themed Phishing, Spam
Beyond romance scams, cybercriminals are also leveraging Valentine’s Day promotions to trick consumers into falling for phishing scams and fraudulent online sales.
Bitdefender’s findings revealed a dramatic increase in Valentine-themed spam, with a significant portion containing malicious intent.
Between January 13 and February 7, half of all Valentine-related spam emails were classified as scams, up from just 25% last year.
The U.S. was the most targeted region, accounting for 49% of scam emails, followed by Germany (14%), Ireland (11%) and the U.K. (9%). The U.S. was also the top source of malicious spam at 58%, followed by Indonesia at 9%.
Alina Bizga, a security analyst at Bitdefender, said there are steps consumers can take to identify fraudulent retailers and avoid being tricked by fake promotions.
“Before engaging with any Valentine’s Day promotion or online retailer, consumers should check the website URL carefully for any slight changes in the domain name, as scammers often use typosquatting to trick potential buyers,” she said.
She advised looking for the secure padlock symbol — though noting that it is not a guaranteed sign of legitimacy — and researching reviews, return policies and contact information before making purchases.
Businesses also have a role to play in protecting their customers from scams that impersonate their brands.
Bizga suggested that e-commerce companies, hospitality providers and retailers take a proactive approach by monitoring for fraudulent use of their names, issuing clear warnings on social media and providing customers with information on how to verify legitimate communications.
“Businesses should proactively mitigate impersonation scams by educating customers about official channels, monitoring for fraudulent use of their brands and ensuring comprehensive reporting systems are in place,” she said.
McAfee’s report highlights the growing threat of AI-driven deception in online dating, revealing that in the seven weeks leading up to Valentine’s Day, the company blocked 321,509 fraudulent URLs designed to exploit users.
The report found that 52% of people have been scammed or pressured to send money or gifts to someone they met online, while 47% have been catfished or know someone who has.
Researchers also detected nearly 11,000 attempts to download fraudulent dating apps, with Tinder being the most impersonated at 55%, with 38% of people reporting being contacted on social media by scammers posing as celebrities or public figures.
