ZDNet UK


Skip to Main Content

ZDNet.co.uk - Winner of Best Business Website 2007
  1. Home
  2. News
  3. Blogs
  4. Reviews
  5. Prices
  6. Resources
  7. Community
  8. My ZDNet

 

ZDNet UK RSS Feeds


IT Jobs

Security threats Toolkit

Phishing attacks up 1,000-fold since September

Munir Kotadia ZDNet.co.uk

Published: 19 Apr 2004 17:50 BST

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

The number of phishing emails circulating on the Web has increased from 279 to 215,643 over the past six months, according to email security company MessageLabs.

Phishing is an Internet scam in which unsuspecting users receive official-looking emails that attempt to fool them into disclosing online passwords, user names and other personal information. Victims are usually persuaded to click on a link in an email that directs them to a doctored version of an organisation's Web site.

MessageLabs, which monitors corporate email traffic, said on Monday that in September 2003 the company encountered just 279 phishing emails. In January 2004 this figure reached 337,050 and then dropped back to 215,643 by March. The company said it is impossible to estimate exactly how many users have been fooled by the phishers. The UK banking industry body APACS said that last year, fewer than 100 people had fallen victim to phishing attacks.

The Anti-Phishing Working Group (APWG), which was formed in November 2003 to provide a forum for financial institutions to share information about new phishing campaigns, recently warned its members about an attack that can modify the victim's browser by replacing the address bar with a Java applet. This allows the attacker to take the victim to any Web site, but display the address of an official Web site in the browser's window, increasing the chances of fooling the users.

According to the APWG's Web site, the new attack targeted Citibank customers at the end of March: "This sophisticated new attack automatically detects the consumer's browser, and applies a custom JavaScript that replaces the look and feel of the Web address bar with an appropriately designed working fake. You can even type in the bank's Web address directly into the fake address bar -- this is a live piece of JavaScript code, not a static fake address bar image," the organisation said.

  • Email
  • Trackback
  • Clip Link
  • Print friendly Print with Dell

Did you find this article useful?
44 out of 104 people found this useful


Talkback

Post a comment


Full Talkback thread

1 comment

  1. Yep I was one too. However, I went to the local F... Carl Wayne Santy

Related Links

More In Security threats


Company/Topic Alerts

Create a new alert from the list below:






Related Jobs

JavaScript / AJAX / Web 2.0 development role

They are using technologies such as XSLT, CSS and JavaScript and XML. They are looking for someone who is a VERY technically adept at JavaScript and ...

Front End Developer - User Interface - Media

If you have knowledge of JavaScript/ DOM Scripting/ AJAX this would be a big advantage. You will have experience creating tableless layouts and cross ...

1st/2nd Line Technical Support/Helpdesk Agent/Analyst/Engineer HR.net, SQL, IIS, RDBMS, .NET Salary up to 21,000 - Worle, Weston-Super-Mare Nr Bristol

HR.net you will be working with SQL, JavaScript and VBScript and require a high level of adaptability as well as a keen eye for detail as well as the ...

Featured Talkback

What was achieved there is recognised to be of fundamental importance to both winning the war (Churchill visited to say 'thank you' to them) and the development of the computer. Maybe Bill Gates doesn't want to support this museum because it underlines where electronic computing started i.e. here, not the U.S.

By: 1000103773

Read full story:
Bletchley Park faces bleak future

Sentry Posts Blog

Mobile Security Expert: Your Camera Ph...

Mobile Security Expert: Your Camera Phone Got Hacked Author: Eric Everson, Founder MyMobiSafe.com Have you ever heard someone say “I’d like to be a fly on the wall in that room.”?... More

Post a comment

Skype - The Roach Motel

Here is an interesting article from The National Business Review, pointing out once again that you can never delete a Skype account. Never. Period. This is something I am familiar... More

Post a comment

The vPhone: Why Visa Should Go Mobile

The vPhone: Why Visa Should Go Mobile Author: Eric Everson, Founder MyMobiSafe.com With all of the success of Apple’s iPhone, there is a growing case to support a company like Visa... More

Post a comment

Featured Oracle Resources

businessfirst: Ideas to help small companies retain their successful entrepreneurial spirit

Oracle ONE Magazine: Technology solutions for midsized businesses February 2008 edition

Choosing a Reliable and Powerful IT Infrastructure at a Price You Can Afford

Database Consolidation: Reducing Cost and Complexity

Ensuring Data Protection for Growing Business

Oracle for medium and emerging businesses: protect, strengthen and enhance your organisation

Oracle partner network solutions catalogue

See All White Papers