Check Point Research (CPR) has unveiled alarming insights into the cyber threats associated with the holiday shopping season. As Cyber Monday marks the peak of online deals and transactions, cybercriminals are exploiting the frenzy, with a significant surge in malicious activities targeting consumers and retailers alike.
A comparison with previous years reveals a striking trend: in the weeks leading up to this significant shopping event, the rate of registered new websites surged tremendously. For instance, this year, the number of newly established websites linked to Black Friday two weeks before the event has skyrocketed, showing an 89% increase compared to 2023. Even more impressively, this figure has more than tripled when stacked against the numbers from 2022, indicating a robust and growing interest in capitalizing on the shopping frenzy surrounding Black Friday each year.
Key Findings from Check Point Research:
- Proliferation of Malicious Websites for not just big but also smaller brands: Nearly all new holiday shopping websites observed in the lead-up to Black Friday were classified as unsafe. These phishing sites lure shoppers with enticing deals, only to harvest payment details and login credentials. The malicious websites Check Point Research has observed signals a troubling trend. The websites not only impersonate well-known global brands but also target smaller, boutique brands that may be less recognizable. Interestingly, many of these fraudulent sites exhibit similar design elements and formatting, suggesting the possibility of a coordinated operation behind these deceptive practices.
- U.S. Under Heavy Fire: The United States remains the most targeted region for ransomware, with incidents rising by 24% compared to last year. U.S. retailers account for 45% of global ransomware attacks in the retail sector despite comprising less than 30% of the global retail market.
- Downstream Risks: Cybercriminals exploit stolen data to fuel a wide range of scams, from draining personal bank accounts to extorting businesses. The economic fallout can be devastating, with potential fines, operational disruptions, and reputational damage for businesses.
Alarming Examples of Fake Websites
Check Point Research identified several fake “Black Friday” websites designed to mimic popular global brands and steal sensitive data:
- Stüssy (Streetwear): stussycanadablackfriday[.]com
- Longchamp (Bags): longchampblackfriday[.]com
- Wayfair (Online Home Store): wayfareblackfriday[.]com
- SOREL (Footwear): soreloutletblackfriday[.]com
- J.Crew (Retail): jcrewblackfriday[.]com
- IUN (Footwear): blackfriday-shoe[.]top
These sites are designed to appear legitimate, luring consumers with enticing deals while harvesting payment details and login credentials.
Consumer and Business Recommendations:
To stay secure during the holiday season, Check Point Research advises:
- For Consumers:
- Only shop on verified websites. Look for HTTPS in the URL and avoid deals that seem too good to be true.
- Use strong, unique passwords and enable multi-factor authentication.
- Avoid clicking on unsolicited email links; navigate directly to retailers’ official websites.
- For Businesses:
- Strengthen endpoint protection and regularly update security systems.
- Educate employees about phishing risks and ensure robust incident response plans are in place.
- Monitor network activity closely, especially during peak transaction times.
