The holiday shopping rush is here, and the deals are tempting. But before you hit "Add to Cart," there’s a major warning you need to hear.

A dangerous new threat is targeting millions of online shoppers—are you at risk?

The art of deception: SilkSpecter's threat campaign​

The threat campaign, identified by EclecticIQ's research team, is exploiting the surge in online shopping activity that comes with November's Black Friday discounts.

SilkSpecter has been stealing cardholder data, sensitive authentication data, and personally identifiable information (PII) by creating convincing fake websites.

These sites are not only designed to mimic legitimate e-commerce platforms but also use dynamic language translation based on the victim's IP location to enhance their credibility.


The scammers have been particularly cunning, leveraging legitimate payment processing providers to steal credit card details.

They've crafted discount lures and URLs that manipulate search results, making it easier for unsuspecting shoppers to stumble upon their traps.

Spotting the red flags​

While the browsers we use—accounting for 93% of the global market share—do their best to protect us, there are certain telltale signs that can help us spot malicious sites:

• Domains using .top, .shop, .store, and .vip top-level domains, often typosquatting legitimate e-commerce organizations' domain names.
• Unrealistic discounts, such as “80% off” tags
• The use of web trackers common to legitimate retailers, which collect detailed activity logs from each visitor.

The data collected by these phishing sites is extensive and can lead to further attacks, such as vishing (voice phishing) or smishing (SMS phishing), where attackers deceive victims into providing additional sensitive information.

Known malicious domains​

The research team has published a list of known malicious domains, including:

• northfaceblackfriday[.]shop
• lidl-blackfriday-eu[.]shop
• bbw-blackfriday[.]shop
• llbeanblackfridays[.]shop
• dopeblackfriday[.]shop
• wayfareblackfriday[.]com
• makitablackfriday[.]shop
• blackfriday-shoe[.]top
• eu-blochdance[.]shop
• ikea-euonline[.]com
• gardena-eu[.]com

However, with over 4,000 malicious domains identified, shoppers are advised to be vigilant when clicking on URLs related to discounts or sales events.

The dark side of Black Friday: Kaspersky's findings​

Kaspersky's security researchers have detected almost 200,000 Black Friday-themed spam messages since the beginning of the month, with phishing attacks targeting online stores, payment systems, and banks.

Even dark web sellers are jumping on the Black Friday bandwagon, offering discounts akin to those found in legitimate shops.

Phishing and scams are among the top threats for online shoppers, with fraudsters creating fake websites, emails, or ads that closely resemble those of legitimate retailers.

Busy or distracted shoppers may not take the time to carefully review links or emails, making them more vulnerable to these threats.

Amazon's response and advice​

Amazon, frequently impersonated by scammers, has issued advice for shoppers to help them stay safe online:

1. Be wary of requests for account or payment information.
2. Watch out for false urgency in messages.
3. Look for grammar or spelling errors in communications.
4. Avoid clicking on links related to purchases, giveaways, or prizes that seem suspicious.

Amazon encourages consumers to report suspected scams to help improve their tools for identifying and stopping bad actors.

Staying safe while shopping online​

As we gear up for the holiday shopping frenzy, it's crucial to stay alert and informed. Here are some tips to help you shop safely:

1. Verify the authenticity of the website before making a purchase.
2. Look for secure payment options and clear return or shipping policies.
3. Be skeptical of deals that seem too good to be true.
4. Keep your browser and security software up to date.

Remember, a moment of caution can prevent a season of regret. Shop smart, stay secure, and enjoy the holidays without falling prey to online scams!
Have you ever noticed suspicious websites when shopping online? Do you check for red flags, like extremely low prices, before making a purchase? What steps do you take to make sure the websites you shop on are secure?

Share your experiences and tips in the comments below, and let's help each other navigate the digital marketplace safely.