Related Links

RiskIQ, the global provider of attack surface intelligence, released its annual Holiday Shopping E-commerce Blacklist threat report. The report unveils how cyber attackers are leveraging popular brands, weaknesses of the global pandemic, and unsafe consumer shopping habits to victimize consumers.

This year's report dives into RiskIQ's Internet Intelligence Graph, repositories of correlated threat data compiled over ten years of crawling the web, to expose the e-commerce threat landscape during the busiest shopping period of the year and how threat actors target top-ten most trafficked e-commerce sites in the U.S. and U.K.

This year’s critical data

  • Of all apps that can be found by searching "Black Friday," "Cyber Monday," "Boxing Day," or "Christmas," 466 are blacklisted (unsafe to use) as malicious
  • The top-10 most trafficked sites on Thanksgiving weekend have a combined total of 1,654 blacklisted apps that contain their branded terms in the title or description, totaling 82.7 per brand
  • 7 domain infringement events across the top-10 most trafficked sites
  • The average length of a Magecart breach is 22 Days
  • RiskIQ detects a Magecart attack every 16 minutes
  • Looking at five of the top-10 most trafficked sites in the U.S and U.K, the company found 18,891 blacklisted URLs containing their branded terms or 945 per brand

"This year's bad holiday actors will capitalize by using the brand names of leading e-tailers, as well as the poor security habits of consumers," said RiskIQ CEO Lou Manousos. "They'll fool shoppers looking for shopping deals, sales, and coupons by creating fake cellphone apps and landing pages."

Avoid becoming a victim

For shoppers looking to score great deals while filling out their holiday shopping list, one misinformed action can result in a malware infection, stolen personal data, or a hijacked credit card number. The report aims to educate consumers on the risky actions threat actors prey on and tips for avoiding becoming a victim.

For brands, what begins as an event that significantly boosts sales can turn into a security fiasco that erodes the trust of customers and prospects. By downloading the report, brands can better understand their vulnerabilities and work to anticipate how they’re being targeted through the holiday shopping season.

Understand how converged physical and cybersecurity systems can scale protection.

Related videos

Find Lost Wallet with Dahua WizSeek

Find Lost Wallet with Dahua WizSeek
Dahua Traffic Signal Controller Highlight

Dahua Traffic Signal Controller Highlight
Insta DomainLink Secret™

Insta DomainLink Secret™

In case you missed it

Which Vertical Markets Have The Greatest Growth Potential For Security?
Which Vertical Markets Have The Greatest Growth Potential For Security?

To serve various vertical markets and industries effectively, security professionals must recognize that each sector has unique assets, risks, compliance requirements, and operatio...

eCLIQ Enhances Security At Marin Hospital Of Hendaye
eCLIQ Enhances Security At Marin Hospital Of Hendaye

The Marin Hospital of Hendaye in the French Basque Country faced common challenges posed by mechanical access control. Challenges faced Relying on mechanical lock-and-key technol...

What’s Behind (Perimeter) Door #1?
What’s Behind (Perimeter) Door #1?

A lot has been said about door security — from reinforced door frames to locking mechanisms to the door construction — all of which is crucial. But what security measur...

Featured white papers
The Key To Unlocking K12 School Safety Grants

The Key To Unlocking K12 School Safety Grants

Download
Honeywell GARD USB Threat Report 2024

Honeywell GARD USB Threat Report 2024

Download
Physical Access Control

Physical Access Control

Download
The 2024 State Of Physical Access Trend Report

The 2024 State Of Physical Access Trend Report

Download
The Security Challenges Of Data Centers

The Security Challenges Of Data Centers

Download
More corporate news
Yeastar, Ursalink, And Milesight Announce Merger To Create The Next Tech Icon

Yeastar, Ursalink, And Milesight Announce Merger To Create The Next Tech Icon
Ava Security And Openpath Join Forces To Integrate Touchless Best-In-Class Access Control And Proactive Video Security

Ava Security And Openpath Join Forces To Integrate Touchless Best-In-Class Access Control And Proactive Video Security
Safeture Announces Partnership With Maiden Voyage To Provide COVID-19 Traveler Safety Training

Safeture Announces Partnership With Maiden Voyage To Provide COVID-19 Traveler Safety Training
Featured products
KentixONE – IoT Access And Monitoring For Data Centers

KentixONE – IoT Access And Monitoring For Data Centers
Climax Technology HSGW-Gen3 Modular Smart Security Gateway

Climax Technology HSGW-Gen3 Modular Smart Security Gateway
Delta Scientific DSC50 ‘S’ Barrier: Portable, Crash-Rated Vehicle Mitigation Solution

Delta Scientific DSC50 ‘S’ Barrier: Portable, Crash-Rated Vehicle Mitigation Solution