iEntry 10th Anniversary RSS Archive

IT Management Begins With Security
SecurityProNews > Insider Reports > Insider > Phishers Prompt Emailers To Dial-A-Thief
Search:
[ insider_reports_insider ]

Phishers Prompt Emailers To Dial-A-Thief



SecurityProNews
Staff Writer
2009-06-01

SecurityProNews: Insider Reports Insider Reports RSS Feed


Likely, scores of spoof sites appearing to be official bank sites pepper the Internet at any given time, but less often do phishers direct targets to make a phone call.

Phishers Prompt Emailers To Dial-A-Thief
Phishers Prompt Emailers To Dial-A-Thief

Most often, phishing email spam directs unsuspecting recipients to visit a website. The website and the email often look very official, with bank logo and similar domains. A good recent example is a Bank of America spoof prompting recipients to update their "digital certificate."

The website the email links to asks for user ID and password for online banking. The scammers were clever enough to even try to reassure victims should their security program interrupt them: "If you receive a ‘potential scripting violation' error message, please click ‘YES' to continue."

In Australia, though, phishers have become more audacious. The email appears to be from Commonwealth Bank of Australia, complete with logo. Recipients are told they have a cashback bonus to be redeemed by dialing the phone number provided. An automated system picks up, asking for the victim's credit card number, expiration date, and personal identification number (PIN).

That's pretty audacious considering many numbers can be traced, especially if law enforcement wants them traced. One supposes there are ways around tracing, though. As inspiration for this technique, the cybercrooks may have drawn on public campaigns explaining to bank customers that they'll never be asked for their personal information via email. Having an actual phone number just adds to the appearance of authenticity.

There may come a day, if crooks get good enough at spoofing banks, that people go back to doing their banking in person.

View All Articles by SecurityProNews




About the Author:
SecurityProNews is a daily online and email publication focusing on internet security issues.

More insider_reports_insider Articles

SecurityProNews: Insider Reports Insider Reports RSS Feed

Get Your Site Submitted for Free in the World's Largest B2B Directory!

Email Address:
* URL:
*
*Indicates Mandatory Field

Terms & Conditions

iEntry Featured Services: Jayde Member Services | Forums | Freeware | Advertise with Us

Contact Us | Advertise | Newsletter Archive | Sitemap | Submit an Article | News Feeds
SecurityProNews is an iEntry, Inc.® publication - 1998-2009 All Rights Reserved | Privacy Policy and Legal		 Join the WebProWorld Forums: Click Here
Virus Warnings

Subscribe to
SecurityProNews FREE!


[ more newsletters ]

Featured On:
article resources
Search Articles:
[advanced search]

WebProWorld.com
Get in-touch with industry experts and leaders
Post your site for review by expert and peers
Ask Security, IT, Development and Design questions

Free Membership: Join Now!

Visit WebProWorld.com

Titan Quest Forum
The #1 Titan Quest forum
Halo 3 Forum
The best Halo, Halo 2, Halo 3 forum
Nintendo Wii
Nintendo Wii news and views
Mac Software
The best in OS X freeware
Graphics Forum
Your source for graphic tutorials
SecurityProNews.com | Breaking eBusiness News Get Your IT Questions Answered - Click Here SecurityProNews News Feeds