Black Friday and Cyber ​​Monday, Scammers Are Already Working Security Matters

Every year on Black Friday and Cyber ​​Monday, scammers take advantage of users’ bad habits to commit fraud.

Researchers at Bitdefender Antispam Lab have analyzed fraudulent activity related to Black Friday and Cyber ​​Monday over the past few weeks.

Experts noted that between October 26 and November 6, unsolicited Black Friday emails peaked on November 9, accounting for 26 percent of all Black Friday-related emails.

Experts note that the majority of all Black Friday spam (by volume) received during the same period (56%) was flagged as scam.

About a quarter (27%) of Black Friday spam (by volume) was targeted at online users in the US and Ireland (24%). Most Black Friday-related spam (49%) came from IP addresses in the US, followed by Germany (16%).

Malicious emails use various subjects in an attempt to trick recipients into visiting fake websites for huge discounts.

Here are some of the subject lines Bitdefender observed:

  • Black Friday Sale Louis Vuitton Handbags Up to 14% Off Online Shop Now
  • Black Friday ray ban oakley costa sunglasses now online shopping up to 90% off
  • Cyber ​​Monday starts now but just for you
  • November 25, 2022 is Black Friday
  • Claim Your $500 Home Depot Gift Card Now!
  • Claim Your 100 Walmart Rewards on Black Friday
  • profitezvite de nosoffresspéciale (for German shoppers)
  • richiedi un prestito per te 200 di buoni in regalo (for Italian shoppers)
  • Black Friday Sale 70 rabatt auf sofort (for German shoppers)

The report details some of the Black Friday scams analyzed by experts, such as the Louis Vuitton and Ray Ban sale scams. Scammers offer impressive discounts that can be obtained by purchasing from fake stores.

black friday

Other campaigns the experts observed invited recipients to pick up gift cards from popular retailers like Home Depot.

In this case, the spam emails contained links to fake online survey pages that had nothing to do with the retailer’s gift cards.

Once the recipient has completed the survey (even if they provided wrong answers to all the questions), they will be directed to another page where we can choose a “prize”. The recipient must then pay for shipping by providing personal and financial data.

“However, we got an iPhone 13. The page shown uses the recipient’s IP address to display a localized version of the scam – Romania in our case. We need to pay 15 lei (about $3.06) for shipping and enter our name and address.” Continue reporting. “After entering our shipping details, we were prompted to enter our payment information, including CC number and CVV code.”

Researchers also found fake PayPal and Amazon vouchers worth 1,000 euros used in campaigns targeting users in Germany. During these campaigns, recipients are asked to enter personally identifiable information and confirm their email addresses. The attacker then sends a malicious link to the email address provided by the user.

Here are the recommendations from Bitdefender:

  • Always check the sender’s email address and look for typos
  • Never interact with unsolicited giveaway letters
  • Shop on sites you know are legitimate
  • research any new suppliers
  • Never access links or attachments received from unknown sources – use Bitdefender security solutions to protect against scams and phishing links
  • Add an extra layer of security and privacy to your devices while shopping this Black Friday Bitdefender Advanced Security. Stop nasty Internet threats with Anti-Phishing and Advanced Threat Protection, Ransomware Protection, virtual private network For safe shopping, there are special password manager, You can avoid malicious attacks and protect your data

The experts also published a guide Safe Holiday Shopping.

Safe shopping everyone!

Follow me on Twitter: @securityaffairs and Facebook and mastodon

Pierluigi Paganini

(security affairs hacking, fraud)

Leave a Reply

Your email address will not be published. Required fields are marked *