Black Friday & Cyber Monday: Navigating the Rising Tide of Phishing Threats 

by | Nov 22, 2023

As Black Friday and Cyber Monday draw near, it is imperative for leaders in cybersecurity and discerning consumers to stay vigilant against the evolving landscape of phishing threats. Our comprehensive annual analysis sheds light on notable trends, particularly in domain spoofing, and pinpoints the geographic hotspots of these burgeoning cyber risks. 

Persistent Surge in Fabricated Domains: 

Our investigation uncovers a striking constancy in the fabrication of counterfeit domains, with a keen focus on prominent retail giants. Domains mimicking Apple are being registered at an alarming frequency of 82 per day, signifying a deliberate ploy by cyber felons to leverage the brand’s worldwide fame. Amazon is not far behind, witnessing an average of 58 imitation domains emerging daily over the recent fortnight. This trend highlights the tactical acumen of cyber adversaries, seeking to exploit the established trust and omnipresence of these household names. 

Phishing domains creation – top three retailers

Geographic Epicenters of Phishing Attacks 

Unraveling the phishing conundrum necessitates pinpointing the geographic epicenters of these malicious operations. Our data delineates three primary sources: 

Algeria

This region is notably engaged in orchestrating phishing campaigns chiefly aimed at American consumers, with a distinct emphasis on masquerading as Walmart. 

Hong Kong

This locale serves as a pivotal hub for the generation of a broad spectrum of fraudulent domains, adeptly impersonating leading retailers such as Amazon, Apple, and Best Buy. An in-depth analysis of Hong Kong’s phishing domain distribution reveals a discernible bias towards certain brands, as demonstrated in the accompanying chart. 

Iceland

Recently surfacing as a formidable origin of phishing threats, this nation has seen a surge in the creation of new deceptive domains. 

Phishing Domain Websites

Strategies for Augmented Security Awareness: 

Considering these revelations, we advocate for a series of proactive measures to fortify defenses against these insidious phishing maneuvers: 

  • Rigorous Website Validation: Exercise meticulous scrutiny of websites, especially those promoting seemingly attractive Black Friday or Cyber Monday deals. This step is crucial in discerning legitimate offers from fraudulent traps. 
  • Vigilance towards Unsolicited Communications: Approach unsolicited emails with a heightened sense of caution, particularly those that urge immediate action or flaunt extraordinary discounts. These are often baits used in phishing scams. 
  • Robust Cybersecurity Framework: It’s essential to deploy advanced cybersecurity solutions that are specifically designed to detect and neutralize phishing activities. Such measures are indispensable in safeguarding against these evolving digital threats. 

The festive season invariably brings with it an escalation in cybersecurity vulnerabilities. Staying atop of these challenges and adopting informed strategies are imperative for safely navigating the perilous landscape of cyber threats. 

Get your security controls assessment now


Recommended Articles

Subscribe to our BLOG

Get the latest security insights, news and articles delivered to your inbox.

Product

Product Overview

Maximize security posture while ensuring business uptime

Odin

AI-Powered Contextual Cybersearch

Automated Security Controls Assessment

Validate your security control

Integrations

Connect Veriti with your security solutions

Use Cases

Agentless OS-Level Remediation

Proactively safeguard your systems directly at the OS-Level on the endpoint

Vulnerability Remediation

Safely remediate vulnerabilities in one click

Validate Risk Posture

Identify postural gaps by querying your security configuration

Eliminate False Positives

Reduce alert fatigue. Increase Security Effectiveness

Maintain Security Hygiene

Monitor the hygiene of your security solutions

Enhance zero-day Protection

Identify and distribute zero-day indicators of attack

Solutions

VERITI FOR Enterprises

increase business outcomes

VERITI FOR MSSPs

Efficiently manage multiple clients in a consolidated platform

VERITI FOR HEALTHCARE

Neutralize security gaps without impacting healthcare operations

VERITI FOR MANUFACTURING

Protect the heart of your production processes

State of Enterprise Security Controls

DOWNLOAD Report >>

Resources

See all resources

Blog

Veriti's security blog

Downloads

The latest guides, white papers and infographics

Events

Live event and on-demand webinars

Glossary

Our Comprehensive Definitions Guide

MASTERING MODERN OS-LEVEL SECURITY: THE AGENTLESS APPROACH

WATCH NOW>>

Our Story

Learn about Veriti

Leadership Team

Meet the team

Careers

Work with us

Newsroom

Our latest updates

Contact US

Get in touch

CHANNEL PARTNERS

Become a partner

MSSPs

Reduce operational costs