As we approach the last week of November 2024, the New Jersey Cybersecurity & Communications Integration Cell (NJCCIC) issued a warning in its Weekly Bulletin titled ‘Tis the Season for Infostealing.
The New Jersey Cybersecurity and Communications Integration Cell is the state’s one-stop shop for cybersecurity information sharing, threat intelligence, and incident reporting.
What is “Infostealing”?
Infostealing campaigns target users searching for Black Friday sales. These campaigns imitate well-known brands, such as L.L. Bean, Wayfair, The North Face, Bath & Body Works, and IKEA.
These imitation websites are well crafted and offer steep discounts to lure potential victims into providing their credit card information. The domains for these impersonated sites often include “blackfriday,” and utilize the top-level domains (TLDs) such as “.shop,” “.vip,”, and “.store”.
Victims are lured by a convincing Black Friday discount theme, such as “80% off” offers. These offers are designed to entice e-commerce shoppers – thinking they are accessing exclusive deals. When a victim lands on the malicious website, several website trackers are deployed to monitor the effectiveness of the attacks by collecting detailed activity logs from each visitor.
These websites use Stripe as the payment processor to add a sense of legitimacy. However, it does not prevent the threat actors from stealing entered payment information. If payment information is entered into these malicious websites, threat actors can steal both the payment and card details.
Based on industry cybercrime analysis of these attacks, we believe much of Infostealing activity originates from China.
Recommendations
- Avoid clicking on ads, social media links, and promoted search results.
- Users should only submit account credentials and payment information on official websites.
- Users are advised to only download applications from official sources.
- Users who downloaded the affected apps are urged to uninstall them promptly.
- Credentials used to log into malicious apps should immediately be changed.
Issues like these are daunting, especially during the holidays! Powersolution.com is ready to help.
Ready to learn more about IT security vulnerabilities and protections? If so, please contact us for a FREE consultation.
For more technology trends and topics, follow our LinkedIn page! 🖥️
➡️ Check Out Our Business Testimonials!
How is your state of IT? Call Us: (201) 493-1414 with any questions.
