Black Friday and Cyber Monday typically reel in the biggest profits for shops across North America. It’s only natural then for cybercriminals the world over to take advantage of the events.1
An analysis of our collection of nearly 400 domains and subdomains created between 1 January and 31 October 2022 containing predefined event-specific strings led to the discovery of:
- 180 domains containing the strings “blackfriday + sale,” “blackfriday + deal,” “blackfriday + discount,” “blackfriday + coupon,” “blackfriday + gift,” “cybermonday + sale,” “cybermonday + deal,” “cybermonday + discount,” “cybermonday + coupon,” and “cybermonday + gift”
- 178 newly created subdomains containing the same strings scammers were likely to use in their campaigns
- Six unredacted registrant email addresses used to register 4,519 domains, 34 of which were dubbed “malicious”
- 273 IP hosts shared by at least 36,973 domains and subdomains, 61 of which were confirmed either malware hosts or spam senders
Download a sample of the threat research materials now or contact us to access the complete set of research materials.
-  https://www.mcafee.com/blogs/privacy-identity-protection/the-worst-black-friday-and-cyber-monday-scams-and-how-to-avoid-them/