Global Security Watch > Fly Phishing

F-Secure Antivirus Research Webloghttp://www.f-secure.com/weblog/archives/00001428.html [F-Secure Antivirus Research Weblog] So now the phishers don't need to ask for passwords anymore, they can just take them.This technique keeps the classic element of phishing by mimicking the trusted institution — the bank.

Some related posts from Technorati and Google.

Technofriendshttp://technofriends.in/2008/05/02/learn-more-about-phishing/ [Technofriends] Learn more about Phishing: This technique keeps the classic element of phishing by mimicking the trusted institution ”” the bank. What they’ve adjusted is the part that people have become skeptical of, which is giving away their password when requested by e-mail.

nocturnal-abyss.com[nocturnal-abyss.com] Beware of phishing websites, emails and even IM’s!: Typically, fraudsters try to trick you into providing your user name and password so that they can gain access to an online account. Once they gain access, they can use your personal information to commit identity theft, charge your credit cards, empty your bank accounts, read your email, and lock you out of your online account by changing your password.

Identity Theft Preventionhttp://securityrequired.com/internet/blogs/prevention/archive/2008/01/28/one-phish-two-phish-old-phish-new-phish.aspx [Identity Theft Prevention] One Phish, Two Phish, Old Phish, New Phish: You can defend against phishing, though, because it blends existing techniques of spam and software exploitation. McAfee® Internet Security Suite guarantees trusted PC protection from viruses, hackers, and spyware.

Internetworking Technologies BLOGhttp://blog.itnt.com/2007/12/spam-phishing-and-other-stuff.html [Internetworking Technologies BLOG] Spam, Phishing and other stuff: If the site says you have entered invalid information, then at least you have a good clue that it is most likely authentic. However, if the Web site lets you type in any random information and comes back to tell your information has been updated, then the site is almost certainly from a hacker designed to capture anyone’s information (no matter what they type).

Startup Earthhttp://startupearth.com/2008/04/20/isps-open-door-to-hackers-entire-internet-now-at-risk/ [Startup Earth] ISPs Open Door To Hackers - Entire Internet Now At Risk: Victims of an email phishing attack would be sent to the subverted domain, which is easily hacked via the holes left by the ISP, and could be made to mimic a trusted site, which, due to the matching domain would be much harder to identify as a phishing attack.

Functioning Form: Interface Designhttp://www.lukew.com/ff/entry.asp?636 [Functioning Form: Interface Design] Webstock 2008: OpenID and decentralised social networks: Rogue sites can mimic design of identity providers. With OpenID an un-trusted site sends you to your trusted provider.

Singular Insights[Singular Insights] “Vocal Terror” or Even Better Phishing Scams?: Too small because I foresee this technology being abused by the same sorts of people who are currently defrauding people via phishing scams. Emails and websites that mimic the look &

Online Security Authority Blog[Online Security Authority Blog] Impersonating a well-known Organization Through Fraudulent Emails: […] that are used to steal information:  Phishing and spoof; Impersonating a well-known organization through fraudulent (phishing) emails and spoof websites, examining garbage, scavenging through trash bins to find old bank statements or other documents […]

Connect-World Bloghttp://connectworld.wordpress.com/2007/12/15/december-ii-2007/ [Connect-World Blog] December II 2007: The Internet-based malware supermarket has a variety of services and tools for botnets, phishing, denial of service attacks, Trojans, worms, anti-detection software and much else besides. Indeed, you can find just about anything you need to intrude, take-over, borrow, trick, or steal can be found, bought or hired on the Net or through the IRCs.

Hacking Newshttp://guardiansoftware777.spaces.live.com/blog/cns!18986C80143C5349!447.entry [Hacking News] ISPs Open Door To Hackers - Entire Internet Now At Risk: Victims of an email phishing attack would be sent to the subverteddomain, which is easily hacked via the holes left by the ISP, and couldbe made to mimic a trusted site, which, due to the matching domainwould be much harder to identify as a phishing attack.

Clipmarks | Politics Clipshttp://clipmarks.com/clipmark/9075D099-0C45-4D93-ADB0-0E9EE039AD1F/ [Clipmarks | Politics Clips] Gone "Phishing" = Web Scammers' Paradise: Fraudsters could easily send out e-mails and establish Web sites that mimic the official campaigns' sites and similarly send out such e-mails that would encourage people to "donate" money without checking for the authenticity of the .

Realtime Community | Unified Communications[Realtime Community | Unified Communications] SIPERA VIPER LAB REVEALS TOP 5 VOIP VULNERABILITIES IN 2007: “While VoIP and Unified Communication adoption continues to grow, there is unfortunately no corresponding level of VoIP security to comprehensively protect VoIP networks, phones, users and enterprise data. VoIP and cell phone spam only represent the tip of the iceberg for security vulnerabilities, so it’s important to expose these larger threats that emerged and escalated in 2007,” said Krishna Kurapati, Sipera founder/CTO and head of Sipera VIPER Lab.

The Gadget Blog - New Gadgets & Tech Talk[The Gadget Blog - New Gadgets & Tech Talk] With April Fools’ Day Approaching, Online Scams are No Laughing Matter: Make sure to use trusted products that offer anti-phishing, spam and security features. Products like Yahoo! Mail and Yahoo! Messenger provide free, award winning spam and security tools. To keep you safe from phishing Web sites, ...

Reflected tags on Technorati: Blog, ,