More and more banking is happening online, with alerts being sent via email. And this legitimate form of banking business has engendered the reverse darkside, phishers who aim to slip in their messages to try to take advantage of unwary end-users.
I just wanted to share a sample phishing message that looked so real even I [...]
During the past several months, I have met with industry thought leaders in network security products and services to discuss the growing threats of botnets, zombies and other ways to describe the issue of compromised hosts.
One of the topics of conversation: what will the bots do next? And do these swiss-army knives of badware [...]
Trying to log in to your Chinese Gmail or Yahoo! webmail? Check carefully…. over the past few days phishers have spread a broad attack trying to entice users to give up their credentials to a fake login page for Google and Yahoo-reminiscent addresses, with a .cn (China) domain. Examples include (and there are dozens of [...]
Scammers came out with some adwords phishing scams around 1 month ago and in the last few days have started a new round. Subject lines include:
your adwords google account is stoped (sic)
account reactivation.
please re-activate your account.
please re-submit your payment information.
please submit your payment information.
please update your billing information.
reactivate your adwords google account.
submit your payment information.
update [...]
John never knew how many friends he had…until he opened the door to a truckload of spam. A short, funny movie about Commtouch RPD technology.
http://www.youtube.com/watch?v=nnD50mSvLPk
Anti-Phishing Phil is an online game developed by Carnegie Mellon’s Usable Privacy and Security Lab (CUPS) with funding from the U.S. National Science Foundation and ARO/CyLab. It’s a fun way to test and improve your ability to spot phishing emails. Try the game out at: http://cups.cs.cmu.edu/antiphishing_phil/quiz/index.html
IBM’s ISS X-Force content research team identified, studied and classified 114,013 brand new phishing sites during the period from June 11-18.
Read X-Force blog