Phishers add call forwarding to their arsenal | The Register

Skip to content

Security:

News Tools

Reg Shops

Top Stories

Read more top stories

Related Whitepapers

Webcast : Why Today's Spam Filters Fail
Watch on-line now
The new way to defeat Spam
Increasing productivity with Abaca
Podcast : Why Today's Spam Filters Fail
Listen or download now
The Register Guides: Managing Spam
A primer on the implications for enterprise IT
The Strategic Role of IT Culture in Business Performance
The Register Desktop Support Seminar
The Register Guides : The status of iSCSI
A Primer on Internet SCSI, a protocol to transport SCSI commands over IP

The Register » Security » Spam »

Phishers add call forwarding to their arsenal

The evolution continues

By Dan Goodin in San Francisco → More by this author

Published Wednesday 25th April 2007 19:55 GMT

The folks at SecureWorks have observed a new phishing technique that uses call forwarding to route a victim's incoming phone calls to a number controlled by the attacker.

Victims are told to confirm their phone number with their bank by dialing *72 followed by a series of numbers. In the US, the sequence will cause most phones to forward all incoming calls. Once completed, the victim hears a message saying the confirmation has been successful.

The call-forwarding ruse is included in a more traditional phishing email that attempts to dupe victims into divulging credit card information and personal identification details. Successful phishing attempts allow the attackers to use the victim's credit card, then provide the victim's identification credentials in the event a banking representative calls to confirm the transaction. ®

Email received by SecureWorks shows how call forwarding is being added to phishers' arsenal

The Register Guide to Managing Spam - Free Download

2 comments posted — Comment period finished

Clearly a phishing email

Posted: 21:57 25th April 2007

NEW?!?

Posted: 19:22 3rd May 2007

Track this type of story as a custom Atom/RSS feed or by email.

Related stories

Austrian domain registrar 'aids' phishers (21 June 2007)
DIY kits dumb down phishing (8 June 2007)
Strange spoofing technique evades anti-phishing filters (25 May 2007)
So who sent you that spam? HP or Oracle? (28 March 2007)
California cuts off aid to ID thieves (26 March 2007)
Anatomy of an eBay scam (21 March 2007)
Phish fighters floored by DDoS assault (20 February 2007)
Social sites' insecurity increasingly worrisome (5 December 2006)
eBay redirection ruse reloaded (13 November 2006)
Phishing email poses as IRS tax refund (30 November 2005)

Post to Slashdot

Add to del.icio.us

Previous Article

Test drive Sun server, storage and networking products - buy what works best for you

Test Drive Sun's Quad-Core Intel Xeon systems today
Meet the fast-growing demand for notebooks with HP
Join Nortel's Partner Program
Microsoft System Center - Designed For Big
Defy All Challenges - Microsoft® Visual Studio 2008

Whitepapers
Why Green Security Makes Good Business Sense Life online: The Web in 2020 The Storage Efficiency Quotient and Pillar Axiom Virtualization Analysis for VMware

The latest report from The Reg

Managing Spam

Download for free NOW

Top 20 stories • All The Week’s Headlines • Archive • Search