Warning: These websites could spell trouble for Chrome, Safari, Firefox, and Edge users!
By
Aubrey Razon
- Replies 1
The holiday shopping rush is here, and the deals are tempting. But before you hit "Add to Cart," there’s a major warning you need to hear.
A dangerous new threat is targeting millions of online shoppers—are you at risk?
SilkSpecter has been stealing cardholder data, sensitive authentication data, and personally identifiable information (PII) by creating convincing fake websites.
These sites are not only designed to mimic legitimate e-commerce platforms but also use dynamic language translation based on the victim's IP location to enhance their credibility.
The scammers have been particularly cunning, leveraging legitimate payment processing providers to steal credit card details.
They've crafted discount lures and URLs that manipulate search results, making it easier for unsuspecting shoppers to stumble upon their traps.
Even dark web sellers are jumping on the Black Friday bandwagon, offering discounts akin to those found in legitimate shops.
Phishing and scams are among the top threats for online shoppers, with fraudsters creating fake websites, emails, or ads that closely resemble those of legitimate retailers.
Busy or distracted shoppers may not take the time to carefully review links or emails, making them more vulnerable to these threats.
Have you ever noticed suspicious websites when shopping online? Do you check for red flags, like extremely low prices, before making a purchase? What steps do you take to make sure the websites you shop on are secure?
Share your experiences and tips in the comments below, and let's help each other navigate the digital marketplace safely.
A dangerous new threat is targeting millions of online shoppers—are you at risk?
The art of deception: SilkSpecter's threat campaign
The threat campaign, identified by EclecticIQ's research team, is exploiting the surge in online shopping activity that comes with November's Black Friday discounts.SilkSpecter has been stealing cardholder data, sensitive authentication data, and personally identifiable information (PII) by creating convincing fake websites.
These sites are not only designed to mimic legitimate e-commerce platforms but also use dynamic language translation based on the victim's IP location to enhance their credibility.
The scammers have been particularly cunning, leveraging legitimate payment processing providers to steal credit card details.
They've crafted discount lures and URLs that manipulate search results, making it easier for unsuspecting shoppers to stumble upon their traps.
Spotting the red flags
While the browsers we use—accounting for 93% of the global market share—do their best to protect us, there are certain telltale signs that can help us spot malicious sites:- Domains using .top, .shop, .store, and .vip top-level domains, often typosquatting legitimate e-commerce organizations' domain names.
- Unrealistic discounts, such as “80% off” tags
- The use of web trackers common to legitimate retailers, which collect detailed activity logs from each visitor.
Known malicious domains
The research team has published a list of known malicious domains, including:- northfaceblackfriday[.]shop
- lidl-blackfriday-eu[.]shop
- bbw-blackfriday[.]shop
- llbeanblackfridays[.]shop
- dopeblackfriday[.]shop
- wayfareblackfriday[.]com
- makitablackfriday[.]shop
- blackfriday-shoe[.]top
- eu-blochdance[.]shop
- ikea-euonline[.]com
- gardena-eu[.]com
The dark side of Black Friday: Kaspersky's findings
Kaspersky's security researchers have detected almost 200,000 Black Friday-themed spam messages since the beginning of the month, with phishing attacks targeting online stores, payment systems, and banks.Even dark web sellers are jumping on the Black Friday bandwagon, offering discounts akin to those found in legitimate shops.
Phishing and scams are among the top threats for online shoppers, with fraudsters creating fake websites, emails, or ads that closely resemble those of legitimate retailers.
Busy or distracted shoppers may not take the time to carefully review links or emails, making them more vulnerable to these threats.
Amazon's response and advice
Amazon, frequently impersonated by scammers, has issued advice for shoppers to help them stay safe online:- Be wary of requests for account or payment information.
- Watch out for false urgency in messages.
- Look for grammar or spelling errors in communications.
- Avoid clicking on links related to purchases, giveaways, or prizes that seem suspicious.
Staying safe while shopping online
As we gear up for the holiday shopping frenzy, it's crucial to stay alert and informed. Here are some tips to help you shop safely:- Verify the authenticity of the website before making a purchase.
- Look for secure payment options and clear return or shipping policies.
- Be skeptical of deals that seem too good to be true.
- Keep your browser and security software up to date.
Key Takeaways
- A serious warning has been issued regarding a threat campaign exploiting the increased online shopping activity around Black Friday, masterminded by the threat actor SilkSpecter.
- Users of popular browsers Chrome, Safari, Firefox, and Edge are at risk as scammers craft malicious websites to steal sensitive information such as credit card details and personal identification information.
- Common signs of scam websites include too-good-to-be-true deals, poor design and typos, suspicious contact information, lack of secure payment options, and unclear return or shipping policies.
- Shoppers are advised to exercise caution and report any suspected scams, with Amazon providing resources at amazon.com/reportascam to help protect consumers and take action against fraudulent activities.
Share your experiences and tips in the comments below, and let's help each other navigate the digital marketplace safely.