Home / Industry

Open Phishing Season

For retailers and consumers, Cyber Monday marked the beginning of the online holiday shopping season. For cybercriminals, however, it marked the opening of their winter phishing season.

Here at MarkMonitor, we are currently seeing an uptick in cybercriminal activity targeting online retailers' brands. Linked here is an example of a phish attack involving a well-known national retailer.

Clearly, brand-based phish and malware attacks such as this one, possess great potential to harm consumers. They also pose a great risk to customer trust and loyalty in your brand. As a result, the range of advice which you can give to your customers to promote safe online holiday shopping is extensive. Customers should:

  • confirm emails from retailers which request their action through links and attachments
  • confirm retailers who are highly ranked in search engine results, but are obscure or little known
  • be wary of website download files
  • ensure an https connection when entering financial credentials into a website
  • use temporary credit card numbers
  • use up-to-date anti-virus/malware software
  • check their financial statements regularly

These are all useful recommendations. Unfortunately, the consumer attitude toward security, and the preventive actions they are willing to take, depends on the convenience of those actions. Consumers choose to shop online, after all, because they value convenience over other considerations, including concern about using their credit cards online.

When brand-based attacks harm consumers, they damage retailers' brands, customer relationships, and the trust which customers have in Internet channels. As a result, these attacks present a very real business problem.

We recommend that online retailers adopt a proactive security stance toward phish and malware. This approach should include adopting preventive measures against brand hijackings and attacks in the planning stages, quickly detecting attacks which are underway, immediately responding with layered security, and analyzing attack data to refine security strategy and tactics. By educating customers and putting in place a proactive security strategy against phish and malware attacks, retailers can ensure a more enjoyable holiday season for customers and retailers alike.

About MarkMonitor

MarkMonitor

MarkMonitor®, the world leader in enterprise brand protection and a Thomson Reuters Intellectual Property & Science business, uses a SaaS delivery model to provide advanced technology and expertise that protects the revenues and reputations of the world's leading brands. Learn More

Related topics: Cybercrime, Cybersquatting, Domain Names, Malware, Security, Spam, Web

 
   
WEEKLY WRAP — Get CircleID's Weekly Summary Report by Email:

Related Blogs

Related News

Explore Topics

Industry Updates – Sponsored Posts

Afilias Announces Relaunch of .GREEN TLD

Encrypting Inbound and Outbound Email Connections with PowerMTA

New .PROMO Domain Sunrise Period Begins Today

Minds + Machines Group Announces Outsourcing Agreements, Web Address Change

.STORE Opens its Doors to Brands

Resilient Cybersecurity: Dealing with On-Premise, Cloud-Based and Hybrid Security Complexities

Verisign Releases Q4 2015 DDoS Trends - DDoS Attack Activity Increasing by 85% Year Over Year

February Biggest Month to Date for Radix, Over 750K Domain Registrations

Best Practices from Verizon - Proactively Mitigating Emerging Fraudulent Activities

Radix & WHMCS Offer Free .HOST Domains to All WHMCS Customers

New .BET Domain Now Available to the Public

Radix and SnapNames Announce Exclusive Partnership

Neustar Data Identifies Most Popular Times of Year for DDoS Attacks in 2015

Radix Gives Its TLD .SPACE a Makeover

The Framework for Resilient Cybersecurity (Webinar)

New .PET Domain Available to the Public

2015 Trends: Multi-channel, Streaming Media and the Growth of Fraud

Priority Access Program for Verisign's First IDN New gTLD, .コム

DeviceAtlas Brings Device Awareness to HAProxy

Minds + Machines Group Expands Into Chinese Market

Sponsored Topics

Afilias

DNS Security

Sponsored by
Afilias
Verisign

Security

Sponsored by
Verisign
Afilias - Mobile & Web Services

Mobile

Sponsored by
Afilias - Mobile & Web Services
Port25

Email

Sponsored by
Port25