Feeds

Cybercrooks ramp up recession-themed scams

DoJ Untouchables plan crackdown

Using blade systems to cut costs and sharpen efficiencies

Cybercrooks have adapted to the global economic crisis with scams based on topical subjects such as refinancing or unemployment in a bid to reel in vulnerable marks.

A survey by brand protection firm MarkMonitor on four leading financial brands reveals that fraudsters are targeting vulnerable individuals looking for ways to keep their head above water during tough times economically. "Scammers are preying upon consumer hardship, demonstrating incredible creativity in combining technology, social engineering techniques and current events," said Frederick Felman, chief marketing officer at MarkMonitor.

As part of its Brandjacking Index exercise, MarkMonitor sifted through 134 million public domain records, countless web pages and billions of spam email messages searching for scams focusing on terms such as foreclosure, mortgage, refinance and unemployed.

It found numerous example of phishing and suspected domain squatting. More than 7,300 cybersquatted domains were located, 16 per cent of which were established after September 2008. Crooks registered domains that incorporated the name of the four targeted brands with "credit crunch relief" terms at the rate of more than one domain per day between September 2008 and April 2009, MarkMonitor reports.

Phishing attacks against the same four financial brands hit 10,000 during Q1 2009, a 36 per cent increase from the previous quarter.

Looking at phishing fraud more generally, MarkMonitor found that 93 organisations were phished for the first time in Q1 2009. Four in five (82 per cent) were financial brands.

Payment service providers, more even than banks and financial services firms, bore the brunt of scam email attacks, featuring in 42 per cent of scam emails. Attacks on social media websites trebled, albeit from a previously miniscule base.

In related news, US consumer watchdog the Federal Trade Commission is due to launch a campaign targeting recession-themed scams. Operation Short Change - more details on which are expected to emerge at a launch event on Wednesday - will also bring the Department of Justice on board in a law enforcement sweep "cracking down on frauds fueled by the economic downturn". ®

Boost IT visibility and business value

More from The Register

next story
14 antivirus apps found to have security problems
Vendors just don't care, says researcher, after finding basic boo-boos in security software
Secure microkernel that uses maths to be 'bug free' goes open source
Hacker-repelling, drone-protecting code will soon be yours to tweak as you see fit
Only '3% of web servers in top corps' fully fixed after Heartbleed snafu
Just slapping a patched OpenSSL on a machine ain't going to cut it, we're told
How long is too long to wait for a security fix?
Synology finally patches OpenSSL bugs in Trevor's NAS
Israel's Iron Dome missile tech stolen by Chinese hackers
Corporate raiders Comment Crew fingered for attacks
Roll out the welcome mat to hackers and crackers
Security chap pens guide to bug bounty programs that won't fail like Yahoo!'s
HIDDEN packet sniffer spy tech in MILLIONS of iPhones, iPads – expert
Don't panic though – Apple's backdoor is not wide open to all, guru tells us
Researcher sat on critical IE bugs for THREE YEARS
VUPEN waited for Pwn2Own cash while IE's sandbox leaked
prev story

Whitepapers

Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Consolidation: The Foundation for IT Business Transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.
Application security programs and practises
Follow a few strategies and your organization can gain the full benefits of open source and the cloud without compromising the security of your applications.
How modern custom applications can spur business growth
Learn how to create, deploy and manage custom applications without consuming or expanding the need for scarce, expensive IT resources.
Securing Web Applications Made Simple and Scalable
Learn how automated security testing can provide a simple and scalable way to protect your web applications.