Black Friday Cyberattacks Just Soared 275%: Alert Your Users



AdobeStock_227902112Black Friday deals are everywhere. Some of the deals just seem too good to be true. In a brand new report, threat researchers at cybersecurity firm Check Point warn that the increasing risk from cybercriminals over the holiday season means we should modify how we shop online.
 
When Check Point created their report in mid-November 2019, “even before the peak of Black Friday and Cyber Monday,” the team explains, “the use of retail phishing URLs had more than doubled—up by 233%.” A week later, by the time this article was published, that had jumped even higher, to 275%.
 
The U.S. sales season is a $144 billion bonanza, up 14% on last year, and running through late November to Christmas. Almost $30 billion will be spent just over the Cyber Weekend. 
 
So how easy is it? It starts with a “lookalike domain,” plausible enough to trick consumers. “A lookalike domain needs to appear close enough to a known domain to avoid raising the suspicions of prospective customers.” Fake domains are prolific. 
 
Check Point’s advice is clear. Don’t click on the promotional links in Black Friday (or Cyber Monday) emails. Instead Google the retailer and click on the real link. Then you can safely navigate to the sales pages and the offers. Here are the Black Friday and Cyber Monday Top 10 Fraud Alert Tips you can send to your users. 
 
"Email is one of the best promotional channels, which is why it’s so open to fraud,” Dembinsky warns. “Retailers will continue to send out emails and fraudsters will keep taking advantage.” And the numbers are spiralling. “This week,” he says, “is already 30% up on last week.”  More detail at Zak Doffman's Forbes article.

Discover dangerous look-alike domains that could be used against you!

Our Domain Doppelgänger tool makes it easy for you to identify your potential “evil domain twins” and combines the search, discovery, reporting, and risk indicators, so you can take action now.

DomainDoppelgangerResultsBetter yet, with these results you can now generate an online assessment test to see what your users are able to recognize as “safe” domains for your organization. You then receive a summary of the test results to understand how security-aware your users are when it comes to identifying potentially fraudulent or phishy domains.

With Domain Doppelgänger, you can:

  • Search for existing and potential look-alike domains
  • Get a report with aggregated results that includes risk indicators, and
  • Generate an online “domain safety” quiz based on the results to administer to your end users

This is a complimentary tool and will take only a few minutes.

Domain Doppelgänger helps you find the threat before it is used against you.

Find your look-alike domains here:

Find Your Look-Alike Domains!

Don't like to click on redirected buttons? Copy & paste this link into your browser:

https://www.knowbe4.com/domain-doppelganger

Subscribe To Our Blog


Traditional Security Webinar Kevin Mitnick




Get the latest about social engineering

Subscribe to CyberheistNews