UPDATED 22:06 EDT / NOVEMBER 14 2019

SECURITY

Lookalike scam domains surge ahead of the holiday shopping season

Cybersecurity firm Venafi Inc. is warning about an explosion in scam sites using lookalike domains to target shoppers in the lead-up to this year’s holiday shopping season.

Security researchers at the firm said Tuesday they found more than 100,000 lookalike domains, sites that use a domain name very similar to legitimate sites, in an attempt to trick consumers into thinking they’re on the legitimate site. Worse still, many of the fake sites with lookalike domains included security certificates as well, further tricking consumers into thinking the sites were legitimate.

The researchers analyzed suspicious domains targeting 20 major retailers in the U.S. and the U.K., with one of the top U.S. retailers alone having more than 49,500 lookalike domains targeting its customers. The research found that there are in excess of 400% more lookalike domains targeting major retailers than legitimate sites and six times more lookalike domains than valid domains among the top 20 online U.K. retailers.

Of the many lookalike domains with certificates, 60% were found to be using free certificates issued by Let’s Encrypt, a certificate authority.

Although retailers themselves cannot be blamed for scam sites trying to trick their customers, the researchers did note that they can take steps to counter the fake sites. Suggested actions include searching for and reporting suspicious domains to Google Safe Browsing and by adding Certificate Authority Authorization to the DNS records of their domains and

“We continue to see rampant growth in the number of malicious, look-alike domains used in predatory phishing attacks,” Jing Xie, senior threat intelligence researcher at Venafi, said in a statement. “This is a result of the push to encrypt more and potentially all web traffic, a trend that generally improves security for users but inadvertently introduces a new challenge to existing methods of phishing detection. Most businesses and many retailers don’t have the updated technology in place to find these malicious sites and remove them to protect their customers.”

Photo: Pxhere

A message from John Furrier, co-founder of SiliconANGLE:

Support our mission to keep content open and free by engaging with theCUBE community. Join theCUBE’s Alumni Trust Network, where technology leaders connect, share intelligence and create opportunities.

  • 15M+ viewers of theCUBE videos, powering conversations across AI, cloud, cybersecurity and more
  • 11.4k+ theCUBE alumni — Connect with more than 11,400 tech and business leaders shaping the future through a unique trusted-based network.
About SiliconANGLE Media
SiliconANGLE Media is a recognized leader in digital media innovation, uniting breakthrough technology, strategic insights and real-time audience engagement. As the parent company of SiliconANGLE, theCUBE Network, theCUBE Research, CUBE365, theCUBE AI and theCUBE SuperStudios — with flagship locations in Silicon Valley and the New York Stock Exchange — SiliconANGLE Media operates at the intersection of media, technology and AI.

Founded by tech visionaries John Furrier and Dave Vellante, SiliconANGLE Media has built a dynamic ecosystem of industry-leading digital media brands that reach 15+ million elite tech professionals. Our new proprietary theCUBE AI Video Cloud is breaking ground in audience interaction, leveraging theCUBEai.com neural network to help technology companies make data-driven decisions and stay at the forefront of industry conversations.