Recently I have received email from my bank/credit Card Company, eBay & pay pal saying that my account has possibly been compromised and I need to confirm my details and password in order to get continued access.
Spam email now has a new and more frightening variant, it's called phishing and it has been made by criminals and hackers who aim at getting unwitting consumers to reveal account numbers and passwords.
Usually after getting an email like the ones mentioned above from reputable companies, most of us would race to respond as quickly as possible. However, in most cases you will find that you won't be helping anyone other then the criminal who wrote that email and who has nothing to do with the actual organizations.
What is Phishing?
It is when someone creates false email that pretends to be from a bank or other authority, but which is actually designed to collect sensitive information such as passwords. This process of stealing information used for fraudulent purposes is the latest problem to plague Internet users. It is a phenomenon know as phishing i.e. emails 'fishing' for important information.
Just like Spam, phishing mails are sent to the widest possible audience so it's not unusual to receive a message asking you to confirm account details from an organization you do not actually deal with. You may be asked to fix up your eBay account when you haven't even got one!
In addition to collecting sensitive information many phishing messages try to install spy ware, Trojans etc. allowing hackers to gain backdoor entry into computers.
Types of Phishing Emails:
Some phishing emails ask for a response by email.
Some emails include a form for collecting details that you are told to fill out.
Some even include a link to a web site that resembles the actual site you expect to visit, but is actually a clone of the original site.
Number of active phishing sites reported in March, 2005: 2870
Number of brands hijacked by phishing campaigns: 78
Contains some form of target name in URL: 31%
Country hosting the most number of phishing sites: United States of America
Source: http://www.antiphishing.org
Phishing attacks can be really sophisticated. Some time ago a flaw in Internet Explorer allowed hackers to display a false address while redirecting the user to an entirely different site making it almost impossible to distinguish a phishing attack from a legitimate email.
Possible solutions:
New technologies can provide a better means of countering phishers. One option being explored by a lot of banks is the use of a secure token, a small electronic gadget that generates a unique password to be entered each time a user logs onto the web site. This would make a phishing attack useless because without the physical possession of a token it is impossible to access the account. This approach is somewhat similar to what is used at Automated Teller Machines around the world where you need to have both the card and the Pin number in order to use the machine.
One option is to use a technology popularly knows as PassMarks that effectively acts as a second password. After entering the user name a unique image pre selected by the user is displayed before s/he is asked for the password. If the proper image is not displayed the user will come to know that s/he is not on the authentic site. Another option that a lot of organizations are exploring is using text messages instead of email messages. Text messages cost money to send, so Spammers are less likely to partake in the process making it easier to distinguish between legitimate messages and fakes.
Ashish Jain
M6.Net Web Helpers http://www.m6.net
Industrial Espionage. These methodologies are being used on a daily... Read More
Whether we like it or not, we are all living... Read More
Imagine this ? you open up your email box and... Read More
No longer are viruses the only threat on the internet.... Read More
This really chapped my lips...I recently bought a new computer.... Read More
In a word, no - an email message has always... Read More
Manual Spy Bot Removal > BookedSpaceBookedSpace is an Internet Explorer... Read More
As soon as almost all computer users already got used... Read More
Phishing: (fish'ing) (n.)This is when someone sends you an email... Read More
Electronic Fraud and Identity Theft Human beings are pretty... Read More
Identity theft is one of the most common criminal acts... Read More
The trash folder in my main inbox hit 4000 today.... Read More
Scams involving email continue to plague consumers across America, indeed... Read More
Recently I have received email from my bank/credit Card Company,... Read More
What is computer security? Computer security is the process of... Read More
Afraid that someone is monitoring your PC or installed a... Read More
The words Corporate Security may conjure up images of a... Read More
It's been with us since 1993, it's gotten more intrusive,... Read More
This is the second in a series of articles highlighting... Read More
If you run any type of Internet business, Adware and... Read More
A week or so ago, I received an inquiry from... Read More
There you are busily typing away on your PC or... Read More
Many of us have run into an annoying and time-consuming... Read More
If you use emails actively in your communication, you must... Read More
Since its birth, the Internet has grown and expanded to... Read More
Shopping for horse gifts or other gift items on the... Read More
Today the internet is a mine field of malicious code... Read More
If you constantly deal with bank or electronic accounts, it... Read More
Despite the current wave of identity theft and corporate security... Read More
Security leaks can be a big problem for any site... Read More
Ebay is a great site and is used by many... Read More
As the number of people using the Internet as an... Read More
If you use the internet, you have probably been infected... Read More
"Phishing," the latest craze among online evil-doers, has nothing to... Read More
Computer viruses infect millions of computers every day. Viruses can... Read More
If you constantly deal with bank or electronic accounts, it... Read More
"You've just won a fabulous vacation or prize package! Now,... Read More
It's late. You've been scouring the web for that perfect... Read More
Ok, you've got a computer, and you get online. You... Read More
Every now and then you can read about a new... Read More
If you are a parent, you have probably wondered at... Read More
The Loss Prevention Manager should be receptive to the needs... Read More
As the number of people using the Internet as an... Read More
1)Spyware is on your system. Like it or not, statistically... Read More
Identity Theft and Your Personal Information Identity theft is... Read More
The trash folder in my main inbox hit 4000 today.... Read More
Spelt phishing, but pronounced as above, this despicable act is... Read More
A crowded marketplace can lead to unethical webmasters using underhand... Read More
The Message Must Get Through The year is 300A.D.,... Read More
At this point, if you've got the whole "turning the... Read More
Well, if that would have been said to me by... Read More
These six ways to prevent identity theft offer you valuable... Read More
The Threat10 years ago you could probably have run no... Read More
My first experience with a spyware BHO based infection was... Read More
Beware of a New Scam Aimed at Bargain-HuntersTrying to buy... Read More
The internet is undoubtedly a fantastic resource for families and... Read More
There are ways to insure security though. You can get... Read More
I Challenge You To Crack The Code ------------------------------------- I had... Read More
Can you protect your computer from all possible viruses and... Read More
Huge number of spyware software applications are available in the... Read More
Can You Prevent Spyware, Worms, Trojans, Viruses, ... To Work... Read More
Blaster, Welchia, Sobig, W32, Backdoor, Trojan, Melissa, Klez, Worm, Loveletter,... Read More
Over the past few years as the internet has become... Read More
Spyware symptoms happen when your computer gets bogged down with... Read More
Spyware protection software is the easiest way of removing spyware... Read More
Spyware and adware are becoming major problems for online surfers... Read More
Internet Security |