Category | Details |
---|---|
Threat Actors | Cybercriminals, fraudsters, and scammers |
Campaign Overview | Focus on Black Friday scams targeting online shoppers, including phishing, fake apps, and banking trojans. |
Target Regions (Or Victims) | Consumers globally, with specific targeting in APAC (11.11), Western regions for Black Friday. |
Methodology | Annual analysis of phishing sites, spam emails, financial malware, fake mobile apps, and banking trojans, with data collected from Kaspersky Security Network (KSN) from January to October 2024. |
Product Targeted | Online retail platforms (Amazon, eBay, Walmart, MercadoLibre, etc.), banking systems, mobile apps |
Malware Reference | Banking Trojans (e.g., Grandoreiro), fake mobile apps |
Tools Used | Phishing sites, fake apps, email campaigns, dark web forums |
Vulnerabilities Exploited | Fake websites, phishing emails, mobile app impersonation, browser exploits (banking trojans), dark web trade of stolen data |
TTPs | Phishing (email, fake sites), social engineering, fake mobile apps, banking trojans (web injections, form-grabbing, clipboard monitoring), dark web selling stolen data |
Attribution | Cybercriminals targeting consumer shopping platforms |
Recommendations | Consumers should use two-factor authentication, secure payment options, and cautious browsing; businesses should implement comprehensive security solutions |
Source | Securelist by Kaspersky |
Read full article: https://securelist.com/black-friday-report-2024/114589/
The above summary has been generated by an AI language model
Leave a Reply