Did you think cybercriminals and scammers wait until the biggest shopping event of the year to strike? Think again.
Researchers at Bitdefender’s Antispam Lab team have been monitoring Black Friday-themed spam since October, and cybercriminals have wasted no time trying to capitalize on the frenzy. From phishing emails impersonating trusted brands to sophisticated malware campaigns, the holiday season has proven fertile ground for all kinds of fraudulent and malicious activity.
This article aims to educate and protect consumers by raising awareness about cybercriminal activities, including scams, phishing campaigns, and fraudulent schemes. These activities also harm legitimate companies, as scammers exploit their credibility and reputation to deceive consumers.
Note: All product and company names mentioned herein are for identification purposes only and are the property of, and may be trademarks of, their respective owners.
Below, we'll examine the latest findings from Bitdefender’s Antispam Lab, highlighting the growing trends, creative tactics, and diverse range of victims targeted in Black Friday-themed scams of 2024.
Viorel Zavoiu, senior researcher at Bitdefender Antispam Labs helped us compile some interesting stats for Black Friday scams:
Spam activity surged in the lead-up to Black Friday, with a noticeable uptick starting in late October. According to data gathered between Oct. 1 and Nov. 17, 2024, Black Friday spam rates peaked at over 6% of total Black Friday Spam email volume, showing a significant increase compared to early October. The spikes in activity align with the shopping season's momentum as scammers leverage the heightened consumer interest in deals.
This year, 77% of all Black Friday-themed spam (by volume) analyzed by Bitdefender’s Antispam Lab team was classified as scams, while only 22% was identified as marketing lures—emails designed to drive traffic to legitimate but overly aggressive promotions.
In 2023, 7 out of every 10 Black Friday-themed spam emails were scams, compared to 2024, when this figure rose to 3 out of every 4 emails. This 7% increase in scam prevalence underscores the greed and daring of cybercriminals, who increasingly leverage fake offers and phishing tactics to exploit consumer shopping behaviors and trends.
The sky’s the limit regarding the portfolio of 2024 Black Friday scams.
One of the most notable features of Black Friday scam campaigns this year is their diversity. Scammers have tailored their messages and tactics to appeal to different groups of shoppers, ranging from tech enthusiasts to fashion aficionados, with campaigns targeting various demographics and regions.
Targeting Tech Enthusiasts
Targeting Fashion Lovers
Targeting Grocery and Household Shoppers
Other
This diversity in spam tactics shows cybercriminals' adaptability and their effort to appeal to as many demographics as possible. The campaigns varied by product type and were also tailored to specific regions, exploiting cultural and shopping preferences to maximize their reach and impact.
As in our previous Black Friday scam trends analysis, scammers leaned heavily on impersonating trusted brands and leveraging psychological tactics such as urgency and exclusivity. Fraudulent emails promised exclusive or early access to Black Friday deals and rewards in exchange for survey participation or irresistible discounts on mystery boxes for submitting payment details.
Counterfeit Rolex watches, Louis Vuitton bags, and Ray-Ban sunglasses are among the recurring themes and usual suspects in this year’s Black Friday scam agenda, with scammers luring shoppers with realistic websites and too-good-to-be-true prices.
Users in Spain Targeted by Banking Trojan Malware
A sophisticated campaign using a banking Trojan from the Grandoreiro malware family has been detected targeting Spanish consumers.
The attackers sent out malicious emails with the subject line "Productos preparados para el envío - Ref. Black Friday Apple." These emails impersonated Fnac, falsely claiming that the recipient's order was ready for shipment. Attached was a PDF file designed to download and execute the Grandoreiro banking Trojan, which steals banking credentials and facilitates unauthorized financial transactions.
To protect against compromise, we recommend users avoid opening attachments from unsolicited emails, use robust antivirus tools to detect and block banking Trojans, and enable two-factor authentication (2FA) for their online banking accounts.
Special thanks to Victor Vrabie from Bitdefender Labs for his analysis of this malware, which provided invaluable insights into its operation.
Here are some notable examples of scam emails:
Scammers orchestrating Black Friday-themed spam campaigns aim to exploit consumer trust and excitement during the shopping season to achieve two primary objectives:
1. Gather Personal Information
Many scams are designed to harvest sensitive personal data, such as:
With this information, scammers can commit identity theft, create fake accounts, or sell the data on dark web marketplaces.
2. Steal Money
Many scams aim to access victims’ funds by:
To safeguard yourself during the Black Friday shopping season:
Bitdefender Scamio is a must-have scam detection tool for netizens who want to steer clear of scams and malicious ads while browsing or interacting on their social media feeds. Scamio is our FREE on-demand scam detector you can use to check for any scammy link or proposal you see online.
Scamio can analyze any texts, messages, links, QR codes, or images and give you a verdict on whether they are part of a scam. Scamio is available on Facebook Messenger, WhatsApp, your web browser and Discord.
Let’s see what Scamio had to say about one of the spam emails we shared:
tags
Alina is a history buff passionate about cybersecurity and anything sci-fi, advocating Bitdefender technologies and solutions. She spends most of her time between her two feline friends and traveling.
View all postsDecember 19, 2024
November 14, 2024