Feeds

You're not cool enough for some malware

Nightclub logic: If you're not hackers' lists, you don't get pwned

Intelligent flash storage arrays

As part of a review of phishing in 2012, RSA has outlined how phishers are now using “whitelists” to narrow down their attacks.

In what the company calls “bouncer list” phishing, RSA writes that attackers are now using “black hat whitelists”. Only those on the target list will see the malware page crafted by the attackers (presuming they’re tricked into following a link): anybody else will get a 404 error.

“Much like many high-profile nighttime hotspots – if your name is not on the list, you’re staying out!” writes RSA’s Cybercrime and Online Fraud Communications Specialist Limor Kessem.

The phishing kit uses a list of intended recipients, generating a unique ID and web page for those on the list. When someone follows the link, their ID is checked on-the-fly, Kessem writes, and the target page is only generated for verified victims.

“After the kit collects victim credentials it sends them to yet another hijacked website (taken over using the exact same method of vulnerability exploit and web-shell), where the password-protected attack page lies in wait to steal user credentials.”

The point of all this is to narrow down the attack to “invited guests” – which, the attackers would hope, also delays the detection of the attack, since many detection systems respond best to large numbers of reported attacks. ®

Top 5 reasons to deploy VMware with Tegile

Whitepapers

Choosing cloud Backup services
Demystify how you can address your data protection needs in your small- to medium-sized business and select the best online backup service to meet your needs.
Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Storage capacity and performance optimization at Mizuno USA
Mizuno USA turn to Tegile storage technology to solve both their SAN and backup issues.