Feeds

DIY kits dumb down phishing

9 out of 10 crooks use ready-made code

Beginner's guide to SSL certificates

Phishing kits are helping to dumb down the process of creating fraudulent websites. Back in the day, setting up a bogus facsimile of a banking site required a modicum of programming skills. No more.

Now the increasing prevalence of DIY fraud website creation kits means setting up a snare for unwary surfers takes about as much effort as setting up a personal website. Nine in ten (92 per cent) of 3,544 new phishing websites identified by IBM's X-Force security research team last week (something of a slow week, incidentally) were the product of phishing kits.

Phishing kits, which first arrived on the scene around two years ago, allow attackers with little technical skill to rapidly set up multiple phishing websites on a single host. Requiring only a small installation footprint, and capable of being seeded with off-the-shelf botnet agents, these phishing kits create a means for hackers to serve up multiple bogus banking websites on a single compromised host.

IBM compares the phenomenon of phishing websites to the appearance of virus creation toolkits in the late 1990s. The infamous Anna Kournikova worm of 2001, for example, was created by 20-year-old Dutch s'kiddie Jan de Wit, using a virus creation toolkit.

Hook, line and stinker

The widespread use of phishing kits comes as no great surprise. However, IBM's improved analytical techniques have yielded an added insight into cybercrime activity and helped to quantify the problem.

For example, IBM discovered that the 3,256 phishing kit sites tied back to 100 registered domains, almost a half (44 per cent) of which were registered in Hong Kong. This compares to the 276 registered domains used by the 288 custom-made phishing websites. More in an entry in IBM's X-Force blog here. ®

Protecting users from Firesheep and other Sidejacking attacks with SSL

More from The Register

next story
Spies would need SUPER POWERS to tap undersea cables
Why mess with armoured 10kV cables when land-based, and legal, snoop tools are easier?
Early result from Scots indyref vote? NAW, Jimmy - it's a SCAM
Anyone claiming to know before tomorrow is telling porkies
Jihadi terrorists DIDN'T encrypt their comms 'cos of Snowden leaks
Intel bods' analysis concludes 'no significant change' after whistle was blown
Israeli spies rebel over mass-snooping on innocent Palestinians
'Disciplinary treatment will be sharp and clear' vow spy-chiefs
TOR users become FBI's No.1 hacking target after legal power grab
Be afeared, me hearties, these scoundrels be spying our signals
Hackers pop Brazil newspaper to root home routers
Step One: try default passwords. Step Two: Repeat Step One until success
China hacked US Army transport orgs TWENTY TIMES in ONE YEAR
FBI et al knew of nine hacks - but didn't tell TRANSCOM
Microsoft to patch ASP.NET mess even if you don't
We know what's good for you, because we made the mess says Redmond
NORKS ban Wi-Fi and satellite internet at embassies
Crackdown on tardy diplomatic sysadmins providing accidental unfiltered internet access
prev story

Whitepapers

Providing a secure and efficient Helpdesk
A single remote control platform for user support is be key to providing an efficient helpdesk. Retain full control over the way in which screen and keystroke data is transmitted.
WIN a very cool portable ZX Spectrum
Win a one-off portable Spectrum built by legendary hardware hacker Ben Heck
Saudi Petroleum chooses Tegile storage solution
A storage solution that addresses company growth and performance for business-critical applications of caseware archive and search along with other key operational systems.
Protecting users from Firesheep and other Sidejacking attacks with SSL
Discussing the vulnerabilities inherent in Wi-Fi networks, and how using TLS/SSL for your entire site will assure security.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.