In the wake of the upcoming Black Friday sales period, cybercriminals are targeting customers of apparel e-commerce websites, including fashion, shoes, gifts, toys and jewellery. Consumers looking for deals in these areas during the upcoming weeks are advised to be careful when making online purchases. These are the key findings of a Black Friday Alert 2019: Net Shopping Bag of Threats, prepared by Kaspersky experts, to evaluate what risks consumers may face during the holiday sales season.
Black Friday is arguably the most anticipated retail sales period in the world, when brands offer consumers the largest discounts and promotional offers. At the same time, cyber-fraudsters also consider this period fruitful, to lure people in to fraudulent schemes and steal their money. To understand the extent of fraudsters’ activity, Kaspersky researchers analysed Black Friday threats, including the activities of botnets that distribute banking Trojans – malware aimed at stealing users’ credentials and financial data.
Proportion of e-commerce categories targeted by malware in 2019, by number of targeted brands.
Botnets are networks of computers infected with malware. Depending on the will of the botnet owner, the malware may download additional malicious modules to use for other purposes. Using state of the art technology, Kaspersky tracks the activity of multiple botnets and is able to learn when a particular one is being changed and new abilities added. Recently, Kaspersky researchers observed botnets made of computers infected with malware aimed at intercepting users’ credentials to gain access to leading e-commerce websites and subsequently (in some cases) bank card details, attached to user accounts in particular e-shops. Kaspersky found 15 malware families that were targeting a total of 91 consumer e-commerce sites and mobile apps across the world.
Of those, consumer goods – such as clothing stores, jewellery and toys – appear to be the key focus of financial botnets operators this season, with 28 websites from this category part of the malware families mentioned above. This was followed by the entertainment segment, including movies, music and games (20 sites targeted). Users of e-commerce brands dealing with the travel industry, such as transportation tickets retailers, taxi services and hotels are also in the list of top sites targeted, with 15 popular websites.
Last year the situation was different: the total number of targeted brands was lower at just 67, while the top of the most ‘hunted’ brands was led by consumer apparel, entertainment and consumer electronics websites. This year, only two websites from the latter category were identified as targeted by one of 15 malicious families.
“The growing interest of cybercriminals in getting users credentials of e-commerce brands is easy to understand. In some cases, there are credit card details or loyalty program card details linked with these accounts and getting access to an e-shop account of a user would also mean access to their money. And even if there is no direct financial gain, personal user accounts contain a lot of valuable information that could be used to further target users, such as purchase history or personal information related to a delivery address etc. Such information is highly valued on the underground market and will inevitably find a buyer. However, the good news for consumers is that through simple precautionary measures and remaining vigilant, they can stay safe. We wish everyone a pleasant shopping experience this Black Friday and during the festive season,” said Oleg Kupreev, security researcher at Kaspersky.
To stay safe during the Black Friday period, Kaspersky recommends shoppers:
- Avoid purchasing from websites that appear suspicious or flawed, no matter how great their Black Friday deals are
- Don’t click on unfamiliar links you receive in emails or social media messages, even from people you know, unless you were expecting the message
- Double-check the email address of the sender. If it is not the official brand’s website domain, do not click on the link
- Chose payment processing services that use multifactor authorisation of purchases, if available
- Use a dedicated security solution on your device, with built-in features to create a secure environment for all financial transactions and prevent fraud, such as Kaspersky Security Cloud and Kaspersky Internet Security.
To learn more about Black Friday tricks and scams, visit securelist.com.
GoFundMe hits R9bn in donations for people and causes
The world’s largest social fundraising platform has announced that Its community has made more than 120-million donations
GoFundMe this week released its annual Year in Giving report, revealing that its community has donated more than 120-million times, raising over $9-billion for people, causes, and organisations since the company’s founding in 2010.
In a letter to the GoFundMe community, CEO Rob Solomon emphasised how GoFundMe witnesses not only the good in people worldwide, but their generosity and their action every day.
“As we enter a new decade, GoFundMe is committed to spreading compassion and empathy through our platform,” said Solomon in the letter. “Together, we can bring more good into the world and unlock the power of global giving.”
The GoFundMe giving community continues to grow with both repeat donors and new donors. In fact, nearly 60% of donors were new this year. After someone makes a donation, they continue to engage with the community and give to multiple causes. In fact, one passionate individual donated 293 times to 234 different fundraisers in this past year alone. Donations are made every second, ranging from $5 to $50,000. This year, more than 40% of donations were under $50.
GoFundMe continues to be a mirror of current events across the globe. This year, young changemakers started the Fridays for Futuremovement to fight climate change, which led to a 60% increase in fundraiser descriptions mentioning ‘climate change’. Additionally, the community rallied together to support one another during natural disasters like Hurricane Dorian and the California wildfires, where thousands of fundraisers were started to help those in need.
The report includes a snapshot of giving trends from the year based on global GoFundMe data. It also includes company milestones from 2019, such as launching the company’s non-profit and advocacy arm, GoFundMe.org, and introducing GoFundMe Charity, which provides enterprise software with no subscription fees or contracts to charities of every size.
Highlights from GoFundMe’s 2019 Year in Giving report include:
- Global giving trends and data
- Top 10 most generous countries
- Top 10 most generous U.S. states and cities
- Biggest moments in 2019
To view the entire report, visit: www.gofundme.com/2019
For users, in-car touchscreens ever more useless
As touchscreens become more commonplace, the gulf of perceived differences in the performance of these features between cars and other devices (such as mobile and in-home) has become wider. A new report from the In-Vehicle UX (IVX) group at Strategy Analytics has investigated car owners’ satisfaction with their on-board touchscreens. Long hamstrung by poor UX and extended production cycles, in-car touchscreens are seen by car users and buyers as lagging behind the experience offered by touchscreens outside the car. As such, consumer satisfaction has continued to slide in China and Europe, while reaching historic lows in the US.
Surveying consumers in the US, Western Europe, and China via web-survey, key report findings include:
- Difficult text entry and excessive fingerprint smudging are common complaints among all car owners.
- Because touchscreens have reached market saturation in the US, satisfaction with in-car screens has tailed off significantly.
- However, touchscreens remain a relatively newer phenomenon in many car models in Western Europe (compared with the US) and thus their limitations are less prominent in the minds of car owners.
- Overall touchscreen satisfaction fell for the fifth straight year in China, indicating a growing impatience for in-car UX to match UX found elsewhere in the consumer electronics space.
Derek Viita, Senior Analyst and report author, says, “Part of the issue with fingerprint smudging is the angle at which in-car touchscreens are installed – they make every fingerprint increasingly visible.
“Fingerprint smudging is an issue across all touchscreen-based consumer electronics. But in most form factors and especially mobile devices, consumers can quite easily adjust their viewing angle. This is not always the case with fixed in-car screens.”
Says Chris Schreiner, Director, Syndicated Research UXIP, “Although hardware quality certainly figures in many of the usual complaints car owners have about their screens, it is not the sole factor. Cockpit layout and UI design can play important roles in mitigating some issues with in-car touchscreens.”