Saturday, April 13, 2024

Over 100,000 Phishing Sites With Valid TLS Certificate to Attack Online Shoppers

Cybercriminals registered more than 100,000 look-alike domains that closely mimic the legitimate websites of popular retail websites.

As the growth of e-commerce increases year after year attackers tend to register more malicious look-alike domains that aimed to steal customer sensitive and financial data.

Most of the users believe everything with HTTPS is trusted and secure, but that is not the real scenario. HTTPS connection ensures only the data traveled between client and server is secure.

FBI recently warned that Hackers use Secure HTTPS Websites to Trick Users and to Steal Sensitive Logins.

Look-alike Domains

According to a recent investigation done by Venafi to find malicious domains targeting 20 retailers in the U.S., U.K., Germany, France, and Australia, they found over 100,000 fake domains that look like safe and trusted.

look-alike domains
Overall Fake Domains

The research shows a sharp growth with the registration of fake domains, almost it doubled the growth when compared to 2018 and the TLS certificates used is 400% high, in that 60% of the domain using free SSL from Let’s Encrypt.

The registered fake domains vary between the country and the targeted retailer, among others, One of the top U.S. retailers has over 49,500 look-alike domains, United Kingdom (13,848), Germany (7,057), Australia (2,000), and France(1,569).

How Retailers can Mitigate

The Following are the two best prevention methods to avoid fake certificates.

  • By using Certificate Transparency retailers can detect malicious certificates. The ultimate aim of Certificate Transparency is to reduce certificate-based threats.
  • By adding CAA records retailers can specify which CA issue the TLS certificate.

For Customers

  • Check the websites with online scanners to find it’s integrity.
  • Check the Website Safety & Reputation
  • Check the website spelling, logo and contact details.

You can find more details for checking with our article Is this website Safe: How to Check Website Safety to Avoid Cyber Threats Online.

You can follow us on LinkedinTwitterFacebook for daily Cybersecurity and hacking news updates.


Latest articles

Alert! Palo Alto RCE Zero-day Vulnerability Actively Exploited in the Wild

In a recent security bulletin, Palo Alto Networks disclosed a critical vulnerability in its...

6-year-old Lighttpd Flaw Impacts Intel And Lenovo Servers

The software supply chain is filled with various challenges, such as untracked security vulnerabilities...

Hackers Employ Deepfake Technology To Impersonate as LastPass CEO

A LastPass employee recently became the target of an attempted fraud involving sophisticated audio...

Sisence Data Breach, CISA Urges To Reset Login Credentials

In response to a recent data breach at Sisense, a provider of data analytics...

DuckDuckGo Launches Privacy Pro: 3-in-1 service With VPN

DuckDuckGo has launched Privacy Pro, a new subscription service that promises to enhance user...

Cyber Attack Surge by 28%:Education Sector at High Risk

In Q1 2024, Check Point Research (CPR) witnessed a notable increase in the average...

Midnight Blizzard’s Microsoft Corporate Email Hack Threatens Federal Agencies: CISA Warns

The Cybersecurity and Infrastructure Security Agency (CISA) has issued an emergency directive concerning a...
Guru baran
Guru baran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Top 3 SME Attack Vectors

Securing the Top 3 SME Attack Vectors

Cybercriminals are laying siege to small-to-medium enterprises (SMEs) across sectors. 73% of SMEs know they were breached in 2023. The real rate could be closer to 100%.

  • Stolen credentials
  • Phishing
  • Exploitation of vulnerabilities

Related Articles