As many as ninety-six percent of organisations worldwide have observed the presence of multiple fraudulent domains on the Internet that spoof their legitimate domains and use security certificates, new TLDs, and email communications to appear legitimate to customers.
The threat posed by fraudulent domains across the world is not only endangering established brands across the globe but also tarnishing their reputation as threat actors are using such domains to carry out wire transfer fraud, the theft of personal and financial information of customers, and are also using them to inject malware into millions of devices.
During the Black Friday shopping fest prior to Christmas last year, the NCSC issued an advisory to citizens, urging them to carefully analyse web links before clicking on them, type a shop’s website address manually into the address bar to shop safely, and only shop on e-commerce websites that they know and trust to stop fraudsters from obtaining their personal and financial data or to inject malware into their devices.
"Staying safe online doesn't require deep technical knowledge, and we want the whole country to know that the NCSC speaks the same language as them. With so many of the UK shopping online, we want to see these tips shared from classrooms and scout groups to family dinner tables and old people's homes," said Ian Levy, technical director at the NCSC to BBC.