Kernel Afrika’s Post

🎯 Chinese Threat Actor Targets Black Friday Shoppers EclecticIQ analysts identified a phishing campaign by “SilkSpecter,” a Chinese threat actor targeting Black Friday shoppers in the U.S. and Europe. Using fake discount offers, the campaign aimed to steal sensitive customer data, such as Cardholder Data (CHD) and Personally Identifiable Information (PII). #CybersecurityAlert 🔒 Capturing Payment Data Through Fake Sites SilkSpecter used Google Translate to adapt phishing sites to a victim’s location, integrating Stripe for authentic-looking payments while secretly exfiltrating sensitive information to attacker-controlled servers. #DataPrivacy 💳 Phishing Techniques in Action Phishing pages included “trusted” icons and real-time trackers to monitor clicks and record user interactions. Browser metadata, such as IP addresses and device info, enhanced the sites’ authenticity, deceiving international users. #OnlineSafety 📱 Expanding Fraud Efforts SilkSpecter collected phone numbers from victims, potentially enabling follow-up attacks like vishing or smishing to extract additional data such as 2FA codes or credentials. #CyberFraud 🌐 Evidence Points to Chinese Origin The campaign relied on Chinese SaaS platform oemapps and registrars like West263 International Limited. Hosting infrastructure included Chinese-hosted CDNs and Cloudflare to mask origins. #ThreatAttribution 🛡 Consumer Protection Tips To reduce risks, use virtual cards for online purchases and set spending limits. Virtual cards isolate transactions and can be canceled if compromised. #ProtectYourData ⚠️ Prepare for Black Friday Phishing Stay alert for suspicious e-commerce offers this shopping season. Are your online defenses ready? Learn more in the full report. #StaySafeOnline https://lnkd.in/g6Pkm8ry

Black Friday and Cyber Monday shoppers beware of scammers. Large increase in fake sites pretending to be something they are not. Check this article to learn more about how to spot them.

🚨 Beware of SEO Poisoning Scams! 🚨 Cybercriminals use SEO poisoning to manipulate search engine results, making fake e-commerce sites appear legitimate. These sites offer unreal discounts, tricking users into sharing personal and financial information. How to stay safe: 1️⃣ Double-check URLs and avoid suspicious domains like .top, .shop, or .vip. 2️⃣ Don’t trust offers that seem too good to be true. 3️⃣ Access websites directly instead of clicking on random search links. 4️⃣ Use secure payment methods and enable two-factor authentication. Stay alert and shop safely this season! 🛡️ #CyberSecurity #SEOpoisoning #OnlineSafety #BlackFriday

Black Friday is now behind us, but don’t expect this Cyber Monday to be off the radar when it comes to those looking to scam you, hack your online accounts and generally make the online sales the kind of experience you won’t want to remember. Criminal marketplaces have sales the same as any legitimate retail operation, but the items on offer are far from legal: phishing exploit kits, fake websites, cookie grabbers and, most dangerous of all, 2FA-bypassing session cookies by the millions. Here’s what you need to know.

🚨 Satori Threat Intelligence Alert: Phish-n-Ships fakes online shops to steal money and credit card information! ⬇️ Here's what you need to know: 🛒 Scheme: Phish-n-Ships creates counterfeit online stores to lure unsuspecting shoppers. 💰 Target: Victims are primarily individuals looking for deals on popular products. 🔍 Techniques: Utilizes phishing tactics, including fake websites and fraudulent payment gateways. 📊 Impact: Thousands of dollars lost, with numerous credit card details compromised. 🛡️ Response: Experts recommend vigilance when shopping online and verifying website authenticity. Stay informed and protect your financial information from these deceptive schemes! 🔒 https://lnkd.in/gmEJRJDt What precautions do you take when shopping online? Share your tips! 👇 #CyberSecurity #Infosec #ThreatIntel #ThreatIntelligence #Phishing #CTI

🛑 Beware of Fourth of July Scams! 🛑 With all the excitement of the holiday, it's easy to overlook potential scams. Here are some to watch out for: Patriotic Emails and Social Media Posts: Be cautious of messages tugging at your heartstrings. Avoid impulse-clicking on untrustworthy links. Shopping Scams: Stick to trusted retailers and secure payment methods. Watch out for bogus deals and “time is running out!” sales. Fireworks Scams: If buying fireworks, use cash at temporary stands to protect your payment info. Virus Attacks and Tech Support Scams: Stay alert for cyber threats and fake tech support offers. Stay... https://lnkd.in/ee4u6YW2

A new wave of tech support scams is targeting eBay customers through fraudulent Google ads. These ads, appearing in searches for terms like "eBay phone number" or "eBay customer service," lead unsuspecting users to fake websites. Once on these sites, victims are prompted to call a phone number, which connects them to scammers who attempt to steal money through fraudulent means, such as asking for gift cards or accessing bank accounts. The scammers cleverly disguise their ads by using eBay’s name and logo, while the actual destination URLs often belong to unrelated subdomains or cloud-hosted sites. To protect yourself, always verify any contact information by visiting the official website, such as eBay’s customer support page, instead of relying on unverified sources. Stay vigilant—contact us for cybersecurity support. FUNCSHUN Your Cybersecurity Partner . . . #funcshun #cybersecurity #cybersecuritymiami #cybersecuritypartner #cybersecuritytips #cybersecurityexperts #cybersecurityconsultant #msp #mspmiami #managedserviceprovider

It's that time of year again and the Fake Discount Sites Exploiting Black Friday to Hijack Shopper Information are back. These bogus pages mimic legitimate brands with the goal of stealing personal information ahead of the Black Friday and Cyber Monday holiday shopping season. ⚠️ The phishing domains have been found to use top-level domains (TLDs) such as .top, .shop, .store, and .vip. ⚠️ It's currently not clear how these URLs are disseminated, but it's suspected to involve social media accounts and search engine optimization (SEO) poisoning. The end goal of the campaign is to capture any sensitive financial information entered by the users as part of fake orders, with the attackers abusing Stripe to process the transactions to give them an illusion of legitimacy, when, in reality, the credit card data is exfiltrated to servers under their control. Tips to avoid these Scams and Threats ✅Watch for Unrealistic Prices: Extremely low prices, especially for high-end products, can indicate a scam. If a deal seems too good to be true, it likely is Use Website Verification Tools. ✅ Analyze the URL Carefully: Check for slight misspellings or unusual domain extensions that resemble legitimate sites (e.g., using ".net" instead of ".com"). Scammers often create URLs that mimic real businesses to deceive customers. ✅ Utilize online tools like UrlVoid or Google Transparency Report to check the legitimacy of a website. These services can alert you to any safety warnings associated with the site. ✅ Check Contact Information: A trustworthy website should provide clear contact details, including a physical address, phone number, and email address linked to the company's domain (not generic services like Gmail). If this information is missing or vague, proceed with caution. Learn more at https://lnkd.in/gN9ewQ2z In the fight against fraud, knowledge is your best weapon. Riskigy Cybersecurity & Tech Advisors #blackfriday #holidays #scams #fraud #knowledgeshare #threatintel #riafortify #cybersecurity #riskigy #security #vciso #GRC #knowledge #cyberawareness #needtoknow #defender

A new wave of tech support scams is targeting eBay customers through fraudulent Google ads. These ads, appearing in searches for terms like "eBay phone number" or "eBay customer service," lead unsuspecting users to fake websites. Once on these sites, victims are prompted to call a phone number, which connects them to scammers who attempt to steal money through fraudulent means, such as asking for gift cards or accessing bank accounts. The scammers cleverly disguise their ads by using eBay’s name and logo, while the actual destination URLs often belong to unrelated subdomains or cloud-hosted sites. To protect yourself, always verify any contact information by visiting the official website, such as eBay’s customer support page, instead of relying on unverified sources. Stay vigilant—contact us for cybersecurity support. FUNCSHUN Your Cybersecurity Partner . . . #funcshun #cybersecurity #cybersecuritymiami #cybersecuritypartner #cybersecuritytips #cybersecurityexperts #cybersecurityconsultant #msp #mspmiami #managedserviceprovider

So ... You thought phishing was all about grabbing someone's credentials. But think again! Think "Phish'n'Ships!" Many hundreds of fake web sites, advertizing out of date or hard to come by products at attractive prices. The ads pop up based on your search history, and trends, using all of the marketing tactics provided by the web for generally legitimate purposes. But the products don't exist and the web sites disappear, after payment processing which seems real. "The threat actors used multiple well-known vulnerabilities to infect a wide variety of websites and stage fake product listings that rose to the top of search results. Unsuspecting consumers who click on these fake product listings and get redirected to a fake web store featuring the searched-for product, among others. The checkout process then runs through a different web store, which integrates with one of four payment processors to complete the checkout. And though the consumer’s money will move to the threat actor, the item will never arrive." For further information, see the following from @human : Phish ’n’ Ships Fakes Online Shops to Steal Money and Credit Card Information https://lnkd.in/g2mSmibm