Cybercriminals go after Amazon Prime Day shoppers
Check Point Research (CPR) has detected an increase in cybercriminals in the lead up to Amazon Prime Day 2021, one of the largest online shopping events of the year. This year’s event, scheduled for June 21 and 22, promises millions of offers and special offers for Amazon’s more than 150 million Prime subscribers around the world. More than 20 countries, including Spain, are expected to participate in Amazon’s annual online shopping event.
Based on the last 30 days, CPR found that nearly half (46 percent) of new domains registered with the word ‘Amazon’ are malicious. What’s more, 32% of new domains registered with the word ‘Amazon’ have been considered suspicious by CPR. Finally, CPR found that 32 percent of new domains registered with the words “Amazon Prime” are malicious. In the past 30 days, more than 2,303 new Amazon-related domains were registered, compared to 2,137 in 2020.
Domain spoofing is a popular way for cybercriminals to steal money or sensitive data. Similar domain registrations aim to divert online traffic and redirect unsuspecting consumers to websites containing malware; also ask users to provide personally identifiable information. In this case, cybercriminals aim to hide behind the Amazon brand. With what objective? Aiming to target Prime Day shoppers with emails that ask the recipient to click on a malicious link or reply with sensitive information.
Tips to avoid getting scammed on Amazon Prime Day 2021
Ram Narayanan, Country Manager, Check Point Software Technologies, Middle East, said:
Prime Day is a crucial opportunity for cybercriminals. The shopping event can be fun, but it can also be dangerous for consumers. The danger here is being tricked into giving up your credit card information; also your passwords and even your address or email address to cybercriminals. Your goal is to earn money from your personal data. The tactic cybercriminals use to deceive is domain spoofing. You click on a page that appears to be from Amazon, but you are actually on malicious ground. Clearly, cybercriminals are doubling down on Prime Day this year, as almost every domain around ‘Amazon’ has red flags. CPR urges Prime Day shoppers this year to be more cautious. They should be on the lookout for misspellings and share only the bare minimum.
This year, Amazon Prime Day will be held in the following countries, according to Amazon: US, UK, UAE, Turkey, Spain, Singapore, Saudi Arabia, Portugal, Netherlands, Mexico, Luxembourg, Japan, Italy, Germany, France, China. , Brazil, Belgium, Austria and Australia.