Phishing Campaign Targets E-Commerce Shoppers Before Black Friday

New phishing campaign targets e-commerce shoppers ahead of Black Friday. A sophisticated phishing operation, attributed to a Chinese threat actor known as SilkSpecter, is exploiting the upcoming Black Friday shopping season by creating counterfeit websites that mimic well-known brands like IKEA and North Face. These sites lure victims with fake discounts to harvest sensitive personal and financial information, including credit card details. The phishing domains often use deceptive top-level domains and employ tactics like SEO poisoning to appear in search results. Additionally, victims are prompted to provide phone numbers, likely for follow-up smishing and vishing attacks. This campaign follows a broader trend of online fraud, highlighting the need for vigilance among consumers during peak shopping periods.