Advertisement
Promo

Security threats Toolkit

Experts warn on opportunistic malware avalanche

Will Sturgeon silicon.com

Published: 22 Jun 2005 11:35 BST

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

Email users are being warned to be on the lookout for new social engineering techniques attempting to exploit the widely-publicised theft of up to 40 million credit card account details from a transaction processing firm.

With a great many Discovery, MasterCard and Visa customers likely to be worried about the effect on them of the world's largest card security breach it is likely phishers will try to prey upon their uncertainty.

Users may receive emails purporting to come from their credit card company asking them to enter their details and card numbers for the purposes of fraud protection or to reactivate their account.

Often emails may even claim a fraud has been committed and against the backdrop of last week's data breach many users will assume that news is legitimate.

Such scams are nothing new but on the back of such a high profile breach it's likely some phishers will try their hand at such an obvious target, said Peter Dorrington, head of fraud solutions at SAS.

"Social engineering is a common technique," said Dorrington. "It needs an instigating hook and the timeliness is certainly there in this case."

He warned that links may even open pages from the very Web sites they set out to spoof, capturing data along the way. "Some of these phishing scams are very clever," he said.

"We're dealing with people with no morals or scruples here and it's not always only idiots who fall for this," he added, saying that in the days following the MasterCard breach it is likely even savvy customers may have been caught off-guard.

Dorrington said any customers who receive any contact via email or telephone purporting to be on official bank business should request a case reference number and then call the number on the back of their bank or card statement to verify it.

Romanian antivirus software vendor BitDefender has said the media attention surrounding the huge data theft may also spawn socially engineered viruses.

BitDefender predicts email users may be directed to spoofed pages where viruses and Trojans could easily be downloaded.

A spokesman for BitDefender said anything that does happen will happen this week as "such attempts must work within the limited attention span imposed by modern media".

  • Email
  • Trackback
  • Clip Link
  • Print friendlyPrint with EPSON

Did you find this article useful?
164 out of 244 people found this useful


In association with Network Liberation Movement

Talkback

Post a comment


Full Talkback thread

0 comments

Related Links

More In Security threats


Related BlackBerry Resources

Protecting the BlackBerry Device Platform Against Malware

BlackBerry Devices with Bluetooth - Security Overview

BlackBerry Enterprise Server IT Policy

BlackBerry Enterprise Solution - Security Technical Overview

BlackBerry Enterprise Solution and RSA SecurID

CIO's Guide to Mobile Security

See All White Papers

Video icon

Video

Sentry Posts Blog

DNA details of innocent will be kept f...

The government has announced that it plans to keep innocent people's DNA details for up to six years. In response to a consultation it launched last December, the government said... More

3 comments

Motorola Droid Drops Today: Happy Droi...

Motorola Droid Drops Today: Happy Droid Day America! Author: Eric Everson, Mobile Security Expert If you’re wondering what all of the buzz is about with words like Droid and Android... More

Post a comment

Mobile Security Profile: BlackBerry St...

Mobile Security Profile: BlackBerry Storm2 Author: Eric Everson BlackBerry handsets are a staple of office culture; from syncing calendars to sharing business-related data,... More

Post a comment


Skip Sub Navigation Links to CNET Brand Links

Help

Become part of the ZDNet community.

ALL TOOLKITS

Blogs

Newsletters