SilkSpecter Scam Alert For Chrome, Safari, and Edge Users

The Black Friday and Cyber Monday sales across top brands have also given leeway to a threat actor, SilkSpecter, to steal personal data and money.

Black Friday and Cyber Monday are two of the biggest online and offline shopping events in the U.S. and beyond that offer extremely rare discounts and price drops. The entire period is known as Cyber Week, which attracted a record high of over 200.4 million shoppers last year from across the globe. An online threat actor by the name of SilkSpecter is misusing this period to steal credit information, and personal data, and conduct monetary transactions by creating fake redirections of top brands.

The heightened online shopping activity in November attracts multiple scammers who fool genuine innocent shoppers into too-good-to-be-true deals on websites that accurately mimic top brands. The research team at EclecticIQ reported the fraudulent campaigns and their respective websites caught on their radar till now.

The report highlights a common pattern in all these fake websites. The main domain contained the original brand name but contained the .top, .shop, .store, and .vip top-level suffixes. Here’s the latest list of top malicious websites identified by the EclecticIQ’s research team:

• northfaceblackfriday[.]shop
• lidl-blackfriday-eu[.]shop
• bbw-blackfriday[.]shop
• llbeanblackfridays[.]shop
• dopeblackfriday[.]shop
• wayfareblackfriday[.]com
• makitablackfriday[.]shop
• blackfriday-shoe[.]top
• eu-blochdance[.]shop
• ikea-euonline[.]com
• gardena-eu[.]com

The entire list goes beyond 4,000 malicious website domains and users are advised to practice extreme precaution when coming across, URLs with themes like ‘discount,’ ‘Black Friday,’ or similar sales events. Additionally, look for the specific path ‘/homeapi/collect’ and domains incorporating ‘trusttollsvg’.”

Along with too-good-to-be-true deals, other identification factors of fake websites include poor design, typos, and insecure internal subdomains. Lack of contact info or suspicious contact information is another common indicator. Users should also thoroughly review the return and shipping policies and match them with the original brand website’s policies.

Even the FBI has warned online shoppers that-

“If a deal looks too good to be true, it probably is! Steer clear of unfamiliar sites offering unrealistic discounts on brand-name merchandise. Scammers frequently prey on Black Friday and Cyber Monday bargain hunters by advertising ‘One-Day Only’ promotions from recognized brands. Without a skeptical eye, consumers may end up paying for an item, giving away personal information, and receive nothing in return except a compromised identity.”

The above warning includes users of all mainstream internet browsers like Safari, Chrome, Firefox, Edge, and others.