It seems like a big catch, but they can rob your bank account when shopping online!

The period of big promotions is not only an exceptional opportunity for shoppers and merchants, but also a favorite season for cybercriminals who plan to profit heavily from online shoppers by creating fake websites that mimic the largest retail platforms and e-payment systems.

In the first ten months of this year, Kaspersky’s products have detected more than 40 million phishing attacks against e-commerce and e-shopping platforms, as well as banks. Although after 18 difficult months, store sales picked up again in 2021 and shoppers returned to offline shopping, Kaspersky researchers did not observe the typical seasonal trends associated with online shopping.

However, there is a striking exception. This year, the number of financial phishing attacks against e-payment systems more than doubled from September (627,560) to October (1,935,905), an increase of 208 percent, according to Kaspersky “Black Friday 2021: how to make your shopping day fraud-free” from his report.

This year, several countries have introduced new payment systems because of their unsurpassed convenience, and as their use skyrocketed among consumers, fraudsters began using them as bait to spread malicious activity.

It is common for these phishing websites to be distributed via email. For example, Kaspersky’s products have detected active distribution of spam e-mails: between November 3 and November 19, 221,745 e-mails containing the term “Black Friday” were detected.

Dual: Kaspersky

Of the popular platforms used as bait to distribute phishing sites, Amazon has consistently been the most popular in terms of the total number of phishing attempts using the platform name. For most of this year, eBay was the second most popular bait, followed by Alibaba and Mercado Libre.

“Scammers, of course, see a new opportunity in each new payment application to take advantage of potential users. We can protect our data and finances by making sure that the online payment page is secure: this is because the URL of the page starts with HTTPS instead of standard HTTP, and typically includes a padlock icon next to the URL. ”Said Miroslav Koren, Kaspersky’s Director of Eastern Europe.

What can be done to avoid falling into the trap of consumer phishers?

  • Use a trusted security solution that identifies malicious attachments and blocks phishing websites – both on computers and mobile devices.
  • Do not open attachments from banks, e-payment applications or shopping portals, or click on links in emails received from them, especially if the sender insists. It is better to go directly to the official website and log in to your account from there.
  • Before entering any information, double-check the URL format or spelling of your business name, read its reviews, and verify your domain registration information.
  • Beware of offers that seem too good to be true – because they are usually scams.

Source: by

*The article has been translated based on the content of by If there is any problem regarding the content, copyright, please leave a report below the article. We will try to process as quickly as possible to protect the rights of the author. Thank you very much!

*We just want readers to access information more quickly and easily with other multilingual content, instead of information only available in a certain language.

*We always respect the copyright of the content of the author and always include the original link of the source article.If the author disagrees, just leave the report below the article, the article will be edited or deleted at the request of the author. Thanks very much! Best regards!