SilkSpecter is a financially motivated cyber threat actor believed to operate out of China, first identified in October 2024. This group gained prominence through phishing campaigns primarily targeting e-commerce shoppers in Europe and the United States during high-traffic shopping periods like Black Friday. Their primary objective is the theft of Cardholder Data (CHD), Sensitive Authentication Data (SAD), and Personally Identifiable Information (PII). A distinguishing characteristic of SilkSpecter is their use of the Chinese Software as a Service (SaaS) platform oemapps to rapidly deploy fake online stores that mimic legitimate brands and dynamically adjust language settings based on victim IP addresses.