Many UAE residents are being deceived by small Dh100-200 scams, showing how minor online frauds can easily trick people into sharing money or personal details.
AI-Driven Micro Frauds Rising on Social Media
Micro fraud schemes on social media are rapidly increasing as scammers shift their focus from large-scale cons to smaller, low-value scams. Many are now leveraging generative AI to make these deceptive tactics appear more convincing and closely tied to reputable brands.
According to cybersecurity professionals, these small-value scams have proven to be extremely effective, as many consumers in the UAE tend to overlook small charges or perceive them as harmless.
Several UAE residents have shared their experiences, explaining that they were contacted through social media with offers to pay small amounts — often below Dh100 or Dh200 — for supposed goods or services. However, upon further investigation, the payment links they received turned out to be fake.
“I was shocked to receive a Dh770 credit card alert for a purchase I never made,” said K. Mahesh, a longtime Dubai resident. “I share my account with my parents, so I initially assumed it was their order. But when I checked, none of us had made the transaction. I immediately blocked my card to prevent further misuse.”
Cybersecurity expert Haifa Ketiti, senior systems engineer at Proofpoint, said: “What were once high-value phishing or payment scams have evolved into smaller, faster, and more opportunistic schemes involving minor amounts. With generative AI becoming more widely available, cybercriminals are now using automation to imitate local language, replicate trusted brands, and create low-value traps that escape early detection.”
She added that although these scams primarily target individuals on social platforms, they employ the same manipulation tactics often seen in corporate cyberattacks.
Rise of Microfrauds
The rise of micro frauds on social media is becoming a growing concern across the UAE, as scammers shift from large, high-value crimes to small, frequent scams involving amounts like Dh100–Dh200. These smaller frauds often go unnoticed because victims consider the sums too minor to question or report.
Experts explain that advances in generative AI have made it easier for scammers to create fake websites, messages, and payment links that look highly convincing and closely resemble legitimate brands. This new wave of cybercrime relies on automation, realistic visuals, and localised language to deceive users into making quick payments without suspicion.
Many victims report being lured by social media ads offering cheap products or services. Once they make the small payment, their financial data is stolen, leading to unauthorised transactions later.
Cybersecurity professionals warn that while the value of each scam may be small, their cumulative effect is significant. These tactics also test victims’ trust and pave the way for larger future attacks.
Experts urge residents to avoid clicking on suspicious links, verify online sellers, and use secure payment platforms. Authorities are also enhancing monitoring systems to track and block these micro-level digital fraud networks.
As per Proofpoint’s Data Loss Landscape report, about 94% of organisations in the UAE faced data loss incidents last year, with 75% blaming it on user negligence. The underlying issue remains human behaviour — cybercriminals exploit minor actions to access larger systems.
Meanwhile, the UAE Cyber Security Council reported that daily cyberattacks on key national sectors have now surpassed 200,000.
Minor monetary losses
Maher Yamout, principal security researcher at Kaspersky’s Global Research & Analysis Team, explained that an increasing number of individuals are getting trapped in these small-scale scams because such minimal amounts often escape notice. Many victims tend to overlook these minor deductions, assuming they aren’t worth disputing or reporting.
He added, “When the requested sums are small, people tend to act quickly without suspicion. This allows scammers to deceive thousands at once, earning substantial profits from the combined total.”
Ketiti explained that when the transaction amount is minimal, most people tend to ignore it, thinking it’s either a minor error or not serious enough to report. “A simple click or a small payment might seem harmless, but these small, repeated actions allow cybercriminals to test their tactics, adjust their strategies, and replicate scams on a larger scale,” she noted.
She further elaborated that scammers often exploit human traits such as curiosity, urgency, and trust in authenticity. “Every small successful transaction not only brings them monetary gain but also valuable insight into user behaviour, which they later use to craft more precise and coordinated cyberattacks,” Ketiti added.
How victims targeted
The senior systems engineer at Proofpoint explained that cybercriminals do not specifically target people based on age.
“Instead of focusing on age, attackers adjust their methods according to users’ digital behaviour. The pattern is behavioural rather than demographic. They analyse how individuals interact online and customise their tactics accordingly, using familiar cues to gain trust and appear credible,” he said.
According to Proofpoint’s global research, most phishing and social engineering schemes now rely on text messages and URLs rather than file attachments, expanding beyond email to SMS, messaging apps, and social media platforms.
Maher Yamout added that scammers do target all age groups, but the strategies vary. “Younger users are often lured by social media trends, fake giveaways, quick-cash schemes, or inexpensive online deals. Older users tend to be targeted through emotional or personal appeals, such as charity frauds or impersonating friends and relatives. Scammers adapt their language and approach to match the habits of each group, but the common factor is low-value fraud designed to stay unnoticed,” he noted.
Ways to stay safe
To guard against micro scams, Yamout advised social media users to ignore suspicious messages, avoid clicking on unknown links, and never disclose personal or financial information.
“Exercise caution when making online payments, even for small amounts, as scammers may be targeting your credit card data. Always verify websites or requests from friends and family through separate, trusted channels, use strong and unique passwords, and enable two-factor authentication. Installing reliable security software is another essential step to stay safe,” he added.
Proofpoint emphasises that the most effective protection is to pause before acting.
“Many scams depend on quick reactions and trust, particularly when the payment or request seems minor. Generative AI now makes these schemes harder to detect, producing fluent, locally relevant messages that appear authentic, even in Arabic. Taking a moment to confirm the sender, link, or request can help prevent both small and significant losses,” concluded Ketiti.
Comments
adamgordon
Thanks for sharing this information is useful for us.