During the hot sales of “Black Friday” and New Year’s Eve sales, there is an increase in the share of fraud with various sites – clones of well-known online stores. In addition, attackers often use mass phishing mailings allegedly on behalf of trading platforms, Fyodor Chunizhekov, an analyst at the Positive Technologies research group, warned in an interview with Izvestia on Friday, December 2.
As the expert noted, scam sites usually look quite believable: they do not differ much from the original, they are filled with great deals and convenient delivery and return conditions. However, when buying on such a site, the victim will transfer his payment card details to the attackers, or even lose money altogether. The main difference between a genuine site and a fraudulent one is the domain name. At the same time, domain names often differ from each other by just one character.
“Scammers are constantly looking for informational reasons to attract the attention of potential victims. In the context of a sale, most often the attackers use very favorable prices or offers that the buyer will not be able to find elsewhere as bait. To do this, in most cases, mass phishing mailings are used – many buyers know that trading platforms and stores send out mailings with discounts and promotional codes, ”Chunizhekov said.
According to him, in mass mailings scammers offer to click on malicious links – they can lead the user to a fake page where they will be asked to enter credentials and bank card information, or provoke the download of malware to gain control over the device.
At the same time, the possibilities of attackers are expanding the popularity of delivery services for purchases directly to the door. So, fraudsters on behalf of the delivery service notify the recipient that the courier will not be able to deliver the package, after which they ask the recipient to provide additional information.
“As a rule, instructions from callers or messages from them lead to phishing sites that request personal data and payment card data, or to download malware aimed at stealing credentials from users’ devices,” the expert warned.
In addition, during the sales period, when the desired product can be sold out at any time, scammers can offer to hold products for partial or full prepayment. After paying the amount, the scammers disappear, and the unfortunate buyer is left to state the fact that he was deceived.
“We encourage buyers to keep a cool head and be aware of what they are doing at every moment of purchase, evaluate all offers critically and understand the possible risks. To check information about the proposed discounts, services and promotions, you need to use the official websites of organizations, ”advised Chunizhekov.
He also urged not to click on links received from untrustworthy sources and not to launch suspicious attachments. It is also important to use antivirus protection and set up two-factor authentication to enter important services. To make purchases and transactions on the Internet, you should use a separate card with a set limit on transactions – this can mitigate the consequences in the event of a leak of payment card data and prevent attackers from stealing a large amount at a time, the specialist added.
On November 30, Kairbulat Zhenatov, head of corporate security at SberStrahovaniya Zhenatov, advised to protect data on the Internet to leave social networking pages, not to save passwords in the browser, and to clear cookies and browser history. He also urged not to connect to unfamiliar public Wi-Fi hotspots.