Items tagged with Phishing

Another day, another exploit/attack/hack/breach/phishing scam to worry about. This one concerns Valve’s Steam Guard Protection and a new phishing scheme that, if successful, allows a cybercriminal to steal a file that will bypass the Steam Guard Protection and allow the thief to log in to the victim’s account from any computer. The above is a fake--a phishing attempt Malwarebytes detailed how the scam works. When you attempt to log into Steam on a different machine and Steam Guard asks you to submit a verification code it will let you in. However, if the phisher gets you to fall for a fake message that looks just like the Steam Guard pop-up, he can acquire your SSFN file, which, when... Read more...
Symantec, which has been making antivirus products for decades (including Norton, the first piece of software most people would try to remove from a new PC), is getting out of the antivirus game, sort of. Brian Dye, Symantec's senior vice president for information security, told the Wall Street Journal that in Synamtec’s view, antivirus is dead. "We don't think of antivirus as a moneymaker in any way," he stated. That doesn't mean the company is completely abandoning Norton, but it is heading in a new direction. Basically, instead of primarily focusing on keeping the walls secure, Symantec is more interested in what to do when (not if) cybercriminals break through. In a year, this will... Read more...
We live at a quizzical time in technology. The tech boom has revolutionized the world, and the innovations that are pouring out of brilliant minds are incredible in both their frequency and content. But there is also a backlash against a lot of technology, perhaps highlighted best by the curious rage that Google Glass seems to engender in a startling number of people. To gauge attitudes about technology’s future, the Pew Research Center did what it does and conducted a survey. Primarily, the study looks at our collective level of excitement or fear over current and future technologies. “Overall, most Americans anticipate that the technological developments of the coming half-century... Read more...
Kaspersky released its Safe Browser for Windows Phone, months after putting out the same product for iOS and days after making a similar one for Android. The app does exactly what you think it does, by blocking access to potentially dangerous sites with a warning page to protect against phishing attacks. Designed for both personal and corporate use, Kaspersky Safe Browser also allows users (read: IT admins) to select certain app settings to make sure the device is in line with the company’s security requirements. It’s good to see more security measures for mobile devices. Too many users have this psychological block where they know that Windows PCs have security issues and therefore... Read more...
Although news about Target’s huge data breach broke almost two months ago, the post-mortem has persisted, and a security firm has posted a detailed breakdown of what went wrong. The story is unnerving, to say the least, as it’s not so much about system-wide failures or anything so big as it is about how all it takes for a body with so many moving parts to fall apart is one weak link and some good old-fashioned phishing. It’s already been established that the breach appears to have emanated from a malware email phishing attack on a Pennsylvania HVAC company called Fazio Mechanical that contracts with Target. The thief made off with network credentials that Target had issued the... Read more...
According to security company Kaspersky Labs, hackers and cybercriminals are targeting gamers, with 11.7 million attacks on gamers in 2013 and some 4.6 million pieces of malware specifically designed to target them. Kaspersky says that’s about 34,000 attacks per day, on average. It’s perhaps not terribly surprising, though, as gaming enthusiasts present a growing attack vector. "Gaming has an ever-increasing fanbase, which also means that the number of potential victims for cyber criminals is rising as well,” said Christian Funk, Senior Virus Analyst, Global Research and Analysis Team, Kasperksy Lab. He also noted that the level of sophistication of the attacks is on the rise.... Read more...
A study from the Polytechnic Institute of New York University examining the factors that cause people to be more susceptible to phishing attacks found strong correlations between gender, certain personality traits, and openness orientation to social networking and being more vulnerable to such an attack. The three authors of the study, which include individuals from computer science; electrical and computer engineering; and technology, culture, and society areas, used the Big Five personality framework as a reference point in determining the traits that might contribute to a greater vulnerability to a phishing attack. The five dimensions are Neuroticism, Extroversion, Openness, Agreeableness,... Read more...
One of the worst possible things that could happen to Facebook would be if it became overrun with phishing scams. Users would start jumping ship in droves. Of course, Facebook users are certainly no strangers to phishing--they’ve seen everything from fake screens asking for your login credentials to baited “Hey bro, i’m in london and need money, can u help me out?” messages--but the busy bees running the social network have done a rather remarkable job of fending off too much of the stuff. Classic Facebook phishing: A fake page for stealing login credentials where anything the user enter will redirect to the page they're trying to reach (Image credit: webroot) Facebook... Read more...
The U.S. Air Force has awarded a $750,000 contract to Wombat Security Technologies for the creation of a "micro-game platform" that trains people not to fall for phishing schemes. Wombat is best known for anti-phishing training games with cartoon-like graphics and names like Anti-Phishing Phyllis, Anti-Phishing Phil, and PhishGuru. This is the second Small Business Innovation Research (SBIR) contract the USAF has awarded to Wombat. The SBIR program is basically a R&D grant program awarded to small businesses developing promising technology for government use. Anti-Phishing Phyllis and her goldfish-like boyfriend Anti-Phishing Phil teach corporate users how to avoid evil e-mails. The Phyllis... Read more...
It seems, sometimes, that a new phishing scam crops up every day, no matter how much security is improved.That's not just your imagination.IBM today released its annual IBM X-Force 2009 Trend and Risk Report, which showed threats that include phishing and document format vulnerabilities, among others, are on the rise.The areas are of most concern, the report showed:Malicious Web links, which result in malware or viruses being downloaded onto the clicker's computerPhishing scams, where messages from a seemingly legit organization or company fool users into turning over sensitive informationVulnerabilities in document readers and editors, particularly in PDFsIn 2009, the report showed, more than... Read more...
FBI Director Robert Mueller, while speaking at the Commonwealth Club in San Francisco on Wednesday, gave an example of why everyone should be wary of cybercrime. He related the story of the head of one of America's domestic agencies. This person, Mueller said, received an email, purportedly from his bank, which looked "perfectly legitimate." It asked him to verify some information, and he began to do so, until he realized that it "might not be such a good idea." "It turned out that he was just a few clicks away from falling into a classic Internet phishing scam, phishing spelled with a 'ph,' and this is someone who spends a good deal of his life warning others about the perils of cybercrime.... Read more...
Internet Explorer 8 is the safest web browser on the market, according to a pair of studies sponsored by, um, Microsoft.One study focused on socially engineered malware and the other on phishing.In the first study, NSS Labs found that IE8 caught 81 percent of live threats, while Firefox 3 caught 27 percent, Safari 4 caught 21 percent, Chrome 2 caught 7 percent and Opera 10 Beta caught 1 percent. NSS attributed this to "concerted efforts Microsoft is making in the SmartScreen technology." But one might wonder about the mathematical validity of the results when the report said there was a 54 percent margin of difference between IE8 and Firefox when it was actually a 54 percentage point difference.... Read more...
It's not your imagination. You are getting more spam in your e-mail inbox.Symantec, which focuses on Internet security and storage, issued a report this week that said a stunning 90.4 percent of e-mail on corporate networks this month was unsolicited. That's a 5.1 percent jump over April.The report highlights:• Spam – 90.4% in May (an increase of 5.1% since April) • Viruses – One in 317.8 emails in May contained malware (a decrease of 0.01% since April) • Phishing – One in 404.7 emails comprised a phishing attack (an increase of 0.11% since April) • Malicious websites – 1,149 new sites blocked per day (a decrease of 67.7% since April) • Spammers continue to abuse... Read more...
Typical of any such crises, whether its the aftermath of an even such as an earthquake, or in this case, the swine flu, phishers and spammers are taking advantage of the situation. Symantec reports on spam that seems designed to simply gather email addresses and phone numbers for a future campaign perhaps. As shown above, one example contains a subject line that says "Suspected Mexican flu toll hits 81." It asks recipients if they are located in Mexico or the U.S. and if they know anyone affected by the flu. Recipients are also asked to provide personal information, either by going to a Web site and filling out a form or by replying to the e-mail with their e-mail address, mailing address, and... Read more...
Prev 1 2 3 Next