Beware of Deceptive Websites Offering Black Friday-Like Promotions
In the lead-up to the Black Friday shopping extravaganza, a new form of cyber attack has emerged. The group, known as SilkSpecter, is orchestrating a campaign aimed at stealing sensitive information from shoppers.
According to a report published by the cybersecurity firm EclecticIQ, SilkSpecter's activities peaked during November, taking advantage of the high online shopping activity for Black Friday discounts. The group creates websites that mimic popular brands, offering deals up to 80 percent off.
These phishing websites, however, are a trap. When shoppers enter sensitive information such as credit card details and personal information, the data is collected and transmitted to an external server.
To deceive victims, SilkSpecter uses Meta and TikTok pixels to detect shoppers' locations and translate pages to their native languages. The group targets consumers in the U.S. and Europe, with the languages used on the affected websites including English and European languages.
The Cybersecurity and Infrastructure Security Agency (CISA) recommends several precautionary steps to stay secure during this holiday season. One such step is to check if the device used for shopping is up to date. Another is to create strong passwords for shopping accounts. CISA also advises verifying the legitimacy of the websites being used for shopping.
EclecticIQ warns that some of the information collected could be used for further attacks to compromise multi-factor authentication and breach sensitive accounts. The firm has identified several websites run by SilkSpecter, including northfaceblackfriday.shop, wayfareblackfriday.com, llbeanblackfriday.shop, blackfriday-shoe.top, ikea-euonline.com, and dopeblackfriday.shop.
Shoppers are urged to take these precautionary steps to protect themselves from cyber attacks during the holiday season. By staying vigilant and following the recommended guidelines, consumers can enjoy the benefits of online shopping while minimising the risk of falling victim to cyber fraud.
Read also:
- Strategizing the Integration of Digital Menus as a Core Element in Business Operations
- Financial Actions of BlockDAG Following Inter and Borussia Agreements: Anticipating Future Steps
- International powers, including France, Germany, and the UK, advocate for the reinstatement of sanctions against Iran.
- Companies urged to combat employee resignation crisis, as per findings from the Addeco Group
