ZDNet UK


Skip to Main Content

ZDNet.co.uk - Winner of Best Business Website 2007
  1. Home
  2. News
  3. Blogs
  4. Reviews
  5. Prices
  6. Resources
  7. Community
  8. My ZDNet

 

ZDNet UK RSS Feeds


IT Jobs

Security threats Toolkit

Spyware gets into phishers' tackle box

Alorie Gilbert CNET News.com

Published: 05 May 2005 09:15 BST

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

Phishers are increasingly using new methods to nab sensitive information from Internet users, according to data from Websense Security Labs.

In recent months, the researchers at security software company Websense detected a rise in schemes involving malicious programs known as keystroke loggers, according to the March phishing trends report released on Wednesday by the Anti-Phishing Working Group (APWG).

The technology, which records the keystrokes of people using infected machines, could be designed to help phishers stay one step ahead of honest folk. In the past, attackers have relied mainly on email messages that lure victims to malicious Web sites, where they are duped into disclosing logins and usernames for banking sites and other sensitive online accounts. The messages are typically spoofed to look like they come the bank or other trusted provider.

The keystroke logger programs are built specifically to capture login names and passwords for online bank accounts and to send them to the attackers, Websense Security Labs said. They typically exploit vulnerabilities in Microsoft's Internet Explorer.

Each week in March and February, Websense uncovered as many as 10 new keylogger variants and more than 100 new Web sites set up to infect computers with them. That's up from November and December, when the company's researchers identified an average of one-to-two new variants and 10 to 15 Web sites per week.

People can infect their machines with keylogger programs in numerous ways, including opening bogus email attachments, downloading programs online or simply visiting a fraudulent Web site.

Keylogger attacks are a particular problem in Brazil, where recent two schemes targeted more than 100,000 email accounts, the report found. However, the machine that hosted the malicious code in one of the attacks was located in California.

Phishers have previously turned to instant messaging, faked news feeds and have preyed on people that mistype the Web addresses of popular online destinations, such as Google.

The United States is host to more phishing sites than any other country, followed by China and Korea, according to the APWG report. In March alone, people reported more than 13,000 phishing-scheme emails to the group.

  • Email
  • Trackback
  • Clip Link
  • Print friendly Print with Dell

Did you find this article useful?
76 out of 158 people found this useful


Company/Topic Alerts

Create a new alert from the list below:




Related Jobs

Highway Design Engineer / Hampshire

Candidates should have highway design experience of projects such as traffic signals, cycle route studies, parking and local highway safety schemes. ...

Web Developer, CSS, HTML, East Yorkshire

The main responsibilities will be the administration and support of web-based programs, including internal web applications, external websites and ...

Commercial Support Manager - Coventry - 40k - 50k

Ensure that new business is priced in accordance with pricing guidelines and that new accounts are correctly implemented from a commercial and ...

Featured Talkback

What was achieved there is recognised to be of fundamental importance to both winning the war (Churchill visited to say 'thank you' to them) and the development of the computer. Maybe Bill Gates doesn't want to support this museum because it underlines where electronic computing started i.e. here, not the U.S.

By: 1000103773

Read full story:
Bletchley Park faces bleak future

Sentry Posts Blog

Mobile Security Expert: Your Camera Ph...

Mobile Security Expert: Your Camera Phone Got Hacked Author: Eric Everson, Founder MyMobiSafe.com Have you ever heard someone say “I’d like to be a fly on the wall in that room.”?... More

Post a comment

Skype - The Roach Motel

Here is an interesting article from The National Business Review, pointing out once again that you can never delete a Skype account. Never. Period. This is something I am familiar... More

Post a comment

The vPhone: Why Visa Should Go Mobile

The vPhone: Why Visa Should Go Mobile Author: Eric Everson, Founder MyMobiSafe.com With all of the success of Apple’s iPhone, there is a growing case to support a company like Visa... More

Post a comment