-
April 8th, 2008, 03:00 PM
#1
Fearing Facebook Phishers
Criminals are counting on the circles of friends nurtured by social networking sites to make a killing -- ugly MySpace pages notwithstanding
Social Networking Accounts Prized By Cybercrooks - washingtonpost.com Security Fix
In an analysis of cyber crime activity in the 2nd half of 2007, security vendor Symantec Corp. found that two social networking sites together were the target of 91 percent of U.S.-based phishing Web sites. Social networking sites also were the leading targets of phishing sites located in four other countries listed by Symantec in its phishing Top 10.
Hijacked social networking pages often are used to host malicious software or "malware" directly or to host links phishing or malware sites that are then advertised in messages sent to all of the contacts in the victim's social network.
Keep those Facebook credentials close to your chest!
-
April 8th, 2008, 04:26 PM
#2
That doesn't surprise me though...bunch of punk kids on facebook make for prime targets.
-
April 8th, 2008, 08:36 PM
#3
LOL! I would tend to agree. Unfortunately, some good people can get caught in that trap.
But I wonder to what end? I know that some profiles are chock full o' personal data (birthdates, locations, phone numbers, etc. -- a stalker's paradise, BTW). Besides spreading malware, is ID theft the ultimate goal?
-
April 8th, 2008, 08:45 PM
#4
ID theft does not have a high profit margin for resale. IDs are sold for 6 bucks each in the black market. If ID theft is the goal, it has to be for a targeted reason. In other words, the ID theft would have to lead to the real prize such as posing as a bank president in order to move large amounts of funds, and so on. Fast and effective distribution of malware is the primary goal from our intelligence sources.
--TH13
Our scars have the power to remind us that our past was real. -- Hannibal Lecter.
Talent is God given. Be humble. Fame is man-given. Be grateful. Conceit is self-given. Be careful. -- John Wooden
-
April 9th, 2008, 10:14 AM
#5
Infosec vendors are horrible sources for data. Ebay + Paypal make up for so much phishing that they are usually ignored for reports like these. It's 'assumed' that they're getting raped by phishing constantly and impossible to make a pitch if it looks like they're hogging all the attacks. Removing them from the picture, you still have all the banks to worry about before looking into the consumer web space. Regardless, phishing is on the rise across all industries. Halifax especially. Any site with users and a login is subject for abuse, the more users the better.
Symantec also doesn't seem to be a member of the APWG, so perhaps we should look there for comparison:
http://www.antiphishing.org/reports/...categories.jpg
http://www.antiphishing.org/reports/...t_dec_2007.pdf
Ghostwritten blog spam if you ask me. journalism 2.0
-
April 9th, 2008, 03:50 PM
#6
Good points, thanks for the link!
-
April 11th, 2008, 11:14 AM
#7
This is rather interesting:
http://www.newsday.com/technology/wi...,5039969.story
Apparently there is fierce competition amongst the crooks and this has driven prices down to $0.40 for a CC and $2 for an ID
-
April 11th, 2008, 10:16 PM
#8
2600s editorial this month talks about how people post their entire lives up on the web for all the world to see. That got me to thinking about the old days. You used to have to know someone a long time before you might give your actual first name and the general area that you were from. Everyone had their handles they used and protected their anonymity as much as possible. I can remember that some would even always log in throgh proxy servers so you couldn't traceroute them.
Only trust Pipe-smoking Penguins.
-
April 14th, 2008, 10:44 PM
#9
Now days, you can google a nick or any name, and get a list of the web sights they have posted.
\"Life should NOT be a journey to the grave with the intention of arriving safely in an attractive and well preserved body, but rather to skid in sideways, Champagne in one hand - strawberries in the other, body thoroughly used up, totally worn out and screaming WOO HOO - What a Ride!\"
Author Unknown
Similar Threads
-
By 576869746568617 in forum Phishing and Cyber Scams
Replies: 1
Last Post: July 7th, 2006, 01:19 AM
-
By whatthe in forum Phishing and Cyber Scams
Replies: 1
Last Post: December 1st, 2005, 03:41 PM
-
By intmon in forum Security News
Replies: 0
Last Post: July 18th, 2005, 06:30 PM
-
By whatthe in forum Phishing and Cyber Scams
Replies: 0
Last Post: March 24th, 2005, 10:18 PM
-
By RaDIaToR52 in forum AntiOnline's General Chit Chat
Replies: 5
Last Post: April 12th, 2002, 01:00 AM
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|