MADRID, 21 Jun. (Portaltic/EP) –
Cybercriminals targeted discount period customers Amazon Prime Day, which started this Monday, with an increase in activity malicious that leads to 80 percent of domains containing the word ‘Amazon’ are potentially dangerous.
In the run up to Amazon Prime Day 2021, cybercriminals have increased their malicious activity, and in many cases they are trying impersonate the ‘eCommerce’ company, as the cybersecurity company Check Point has warned in a statement.
Consequently, 80 percent of domains containing the word ‘Amazon’ are potentially dangerous, according to data from the cybersecurity company.
In the last 30 days, almost half (46%) of new websites registered with the word ‘Amazon’ are malicious and 32 percent of them have been considered suspects. Check Point has discovered that 32 percent of URLs registered with the terms ‘Amazon Prime’ are also fraudulent.
Over the last month, more than 2,303 new domains were registered related to the eCommerce giant, compared to 2,137 in 2020, which means a growth of 10 percent per year.
EXAMPLES OF SCAMS
Domain spoofing (also known as ‘phishing’) is a popular way for cybercriminals to steal money or other sensitive data from users. This search of look-alike addresses is intended to divert ‘online’ traffic and redirect unsuspecting consumers to websites that contain ‘malware’ or that ask you to provide personally identifiable information.
Check Point has found an example of ‘phishing’ allegedly sent by Amazon’s “Customer Service”. The email asks the user to verify their account. It has been determined that the ’email’ was never sent by the impersonated company, but is a clear ‘phishing’ attack by a sender identified as admin @ fuseiseikyu-hl[.]jp.
In this case, the attackers were trying to lure the victims into doing clicking on a malicious link, which redirects the user to the ‘betoncire’ website, which is currently inactive.
Another example found by the Check Point Research researchers is a imitation of amazon japan. Finally, it was determined that the page, with the url ‘amazon[.]update-prime[.]pop2[.]live ‘, is effectively malicious.
So that Internet users can stay safe for Amazon Prime Day, Check Point Research advises beware of spelling mistakes from Amazon.com or sites that use a different top-level domain than Amazon.com, for example, a .co instead of .com, as well as observe the vocabulary of the mail, for example if the user is rushed or the orders are very direct and involve clicking on a link or downloading attachments from an email.
The company also recommends making purchases on sites with the SSL and HTTPS encryption verification padlock Y share as little data as possible, since no online shopping store needs the date of birth or the social security number to make transactions.
Also remember that you have to set up a strong password before Prime Day, and advises against buying in public settingsTrusted airports, hotels or coffee shops with public Wi-Fi networks.
Finally, understand that it is recommended avoid offers too good to be true and excessive discounts, and you are encouraged to buy with credit cards better than debit cards, since the latter pose a greater risk as they are linked to bank accounts.