opportunity also for cybercriminals

Black Friday is a great opportunity for global retail and in Spain it has also become the biggest sales campaign of the year in recent years. In this country, it is predicted that three quarters of consumers will leave on average 200 euros this Black Fridaywhich would mean a total cost of around 6 billion euros.

But Black Friday is also an opportunity for cybercriminals, who throughout 2024 launched over 38 million phishing attacks impersonating large markets, banks and technology retailers, according to Kaspersky. Stolen payment card data is actively traded on darknet forums, with prices ranging from $70 to $315.

Increase in Black Friday scams

Kaspersky Lab is closely monitoring developments in threats related to online shopping. As consumers prepare for Black Friday, company analysts are watching as cybercriminals prepare to take advantage of this demand by trying to steal personal data, funds and distribute malware through deception

associated with such events.

Scammers They often impersonate large retailers such as Amazon, Walmart and Etsy. with misleading emails offering exclusive discounts. These emails link to fake web pages which imitate legitimate ones, often with minor errors such as misspellings or slightly altered domain names. Victims who make purchases on these sites usually lose their money.

Another common scam by cybercriminals is using consumers’ desire to win prizes. Attackers send messages promoting time-limited sweepstakes surveys and offering rewards, such as a free iPhone 14. To create a sense of urgency, they claim that only a few will be able to access the offer, thereby forcing users to act quickly. Scammers offer a “reward” for sharing some “basic information” such as an email address and spending money on a fake website.

Kaspersky Lab experts have traced the paths of fraudulent activity and found that the stolen data is used directly by scammers or sold on darknet markets.

The value of data determines its price. For example, complete sets of stolen credit card data, known as “fullz”, typically include card number, expiration date, CVV code, cardholder name, billing address and telephone number..

Criminals launch their own Black Friday campaign

“This year, dark web marketplaces are mirroring the pricing strategy and marketing tactics of legitimate online retailers. Some They even offer Black Friday style deals.such as discounts and combination packages similar to seasonal sales on regular websites,” he comments. Mark Rivero, lead security researcher at Kaspersky.

In this campaign, the seller offered 10% discount on stolen credit card data from countries such as Spain, Italy, Canada and Australia.prices range from $70 to $315 per card, depending on the quality of the card and region of origin.

Tips for a Safe Black Friday

• Don’t trust any links or attachments you receive by email, check the sender before opening anything.
• Before entering any information, check online shopping sites: is the URL correct? Are there any spelling errors or layout issues?
• Protect all the devices you use to shop online with a reliable security solution.
• If you want to buy something from an unknown company, check the reviews before making a decision.
• Even if you take every precaution possible, you probably won’t know anything is wrong until you check your bank or credit card statements. If you’re still receiving paper statements, don’t wait for them to arrive in the mail—log in online to check if all the charges are legitimate. If this is not the case, contact your bank or credit card company immediately to resolve the situation.