nsane.forums Posted September 17, 2009 Share Posted September 17, 2009 A new, unique type of phishing attack targeted against online banking customers was recently discovered by the RSA FraudAction Research Lab. RSA has coined this as a "Chat-in-the-Middle" phishing attack and it is first executed through routine means but then presents a more advanced layer of perpetrating online fraud. The phishing attack may dupe bank customers into entering their usernames and passwords into an ordinary phishing site but the addition of a bogus live chat support window can obtain even more credentials via a live chat session initiated by fraudsters. During the live chat session, the fraudster behind the attack presents himself as a representative of the bank's fraud department and attempts to dupe customers who are online into divulging sensitive information - such as answers to secret questions that are used for online customer authentication. This attack is currently targeting a single U.S.-based financial institution. Upon detecting the attack RSA immediately informed the affected financial institution and commenced a standard phishing attack shut-down procedure through the RSA Anti-Fraud Command Center and its RSA FraudAction service. (RSA cannot identify this bank in order to protect its security and privacy.) The attack is hosted on a well-known fast flux network for "hire" from fraudster to fraudster, which hosts a wealth of malicious websites such as phishing attacks, Trojans infection points, mule recruitment websites, and more. View: Original Article Link to comment Share on other sites More sharing options...
Bizarre™ Posted September 18, 2009 Share Posted September 18, 2009 They should upgrade their security. Link to comment Share on other sites More sharing options...
karachidude Posted September 19, 2009 Share Posted September 19, 2009 these attackers sure have ways...u think ur safe... Link to comment Share on other sites More sharing options...
Administrator DKT27 Posted September 19, 2009 Administrator Share Posted September 19, 2009 Well once one of my friend phished a Siberian phisher on msn so this is also possible (easily). :P Link to comment Share on other sites More sharing options...
Bizarre™ Posted September 19, 2009 Share Posted September 19, 2009 @karachidude:These hackers might have their way, but a security upgrade nonetheless would keep them at bay, even for a while. Link to comment Share on other sites More sharing options...
karachidude Posted September 19, 2009 Share Posted September 19, 2009 yes offcourse Link to comment Share on other sites More sharing options...
SIRavecavec Posted September 20, 2009 Share Posted September 20, 2009 Most of them are having good money for doing what they do! Link to comment Share on other sites More sharing options...
Administrator DKT27 Posted September 20, 2009 Administrator Share Posted September 20, 2009 Good money? You have no idea how much they can earn. Link to comment Share on other sites More sharing options...
RadioActive Posted September 21, 2009 Share Posted September 21, 2009 It never seizes to amaze me how low people can get just gain a quick buck, don't they have any morals left? If a human is stripped from his morals then he stoops to be lower than the animals that roam the earth and should be put down like a rabid dog... *sighs* Link to comment Share on other sites More sharing options...
Administrator DKT27 Posted September 21, 2009 Administrator Share Posted September 21, 2009 +1. You are right. Hackers just forget their morals, ethics, and start hacking. By the time they come to know about it, they are drowned inside it. Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.