SilkSpecter’s Steep Discounts: A Black Friday Phishing Frenzy!
SilkSpecter, a Chinese threat actor, is running a scam with 4,695 fake online stores to swipe credit card details from U.S. and European shoppers. By mimicking big brands and offering Black Friday deals, they lure victims into entering payment info. Beware: deals too good to be true might cost more than you think!
Hot Take:
Move over, Silk Road, there’s a new SilkSpecter in town, and it’s weaving a tangled web of deceitful shopping deals just in time for the Black Friday frenzy! If it sounds too good to be true, it’s probably a hacker’s way of saying “Gotcha!” Beware of those ‘Black Friday’ deals that might leave your credit card crying in the corner.
Key Points:
- SilkSpecter is a Chinese cybercriminal group creating thousands of fake online stores to steal payment card details.
- The campaign began in October 2024, just in time for Black Friday shopping sprees.
- The fraudulent sites mimic popular brands and use top-level domains like ‘.shop’ and ‘.store’.
- They use trusted payment processor Stripe to enhance credibility while stealing data.
- Stolen credit card data is sent to SilkSpecter’s controlled servers for further exploitation.
Already a member? Log in here