One more year arrives black fridaythe commercial tradition imported from the United States (where it is celebrated on the Friday before Thanksgiving) and which not only marks the beginning of the Christmas shopping campaign, but also represents a large part of their annual turnover for many businesses.
But not everything is rosy. Well, Check Point Software Technologies, a cybersecurity vendor, is warning Black Friday shoppers to beware of scams of phishing Well, two well-known brands are in the crosshairs of cybercriminals.
It may interest you:
How to report a suspicious email in Outlook
Examples of Malicious Activity Detected
1. DHL spoofing
The aforementioned specialists discovered an email campaign impersonating the delivery company DHL.
The emails were sent from the email address “[email protected][.]com” and they were faked to appear as if they were shipped from “Shipping Tracking”.
The email had a malicious URL attached to it, designed to steal the victim’s identity by claiming they had to pay for delivery.
2. Louis Vuitton impersonation
CPR identified a malicious email posing as fashion brand Louis Vuitton with the subject line “Black Friday.” “From USD$ 100. You will fall in love with the prices”, could be read in the email message. After clicking, the site would take the user to a malicious place on the internet.
Over the past month, there has been an increasing number of incidents on these domains, reaching nearly 15,000.
It may interest you:
What is zero trust and how it helps prevent cyber attacks
Five recommendations to buy online on Black Friday
1. Beware of offers
During this season, promotional and offer emails increase, although many of them are false. To avoid entering an infected link, rapidly spreading an attack, do not click on them but go directly to the main page of the provider, preferably typing the full URL address.
2. Protect personal data
“All the information that is shared on social networks, identification data, addresses, tastes and preferences, are of great importance for online stores, and also for consumers. cybercriminals”, he explained Omer DembinskyData Group Manager at Check Point Software.
You should then only enter the data in the mandatory fields and not in the optional ones, in addition to avoiding linking social networks with online stores, thus avoiding that this data can be used to answer security questions.
3. Be careful with apps and their permissions
It is extremely important to control the permissions that each application requests to download it, since many request access and control over SMS, bluetooth or photos stored in the device.
4. Use private networks
Do not neglect the network to which the device connects. Provide connections from own devices. In the case of purchase applications, it must be validated that they are verified by the establishment or brand that distributes the product.
Finally, if there is no other way than to use free connectivity options in public spaces, it is advisable to use them as limited as possible.
5. In case of using a PC, keep the antivirus updated
The protection anti virusas well as a detector malwareshould be used both in the office and on personal devices.
Android cell phones must be updated: cybercriminals found a way to access the cell phone without the key
The 6 recommendations to prevent any personal cell phone account from being stolen
Three options for secure password sharing