Feeds

Articles about phishing

EA games web server was hosting PHISHING SITE – securobod

An Electronic Arts server was hacked and used to host a phishing site targeting Apple ID holders, according to internet security firm Netcraft. The site has since been pulled down and EA has told various news sites that it is "investigating" the report. Netcraft security expert Paul Mutton posted on the company's blog that the …

Hacker breaks into ThrustVPS, launches phishing attack from firm's own servers

Virtual private server firm ThrustVPS has taken the unusual step of admitting it had suffered a phishing attack. Rather than taking the time-honoured solution of just pretending nothing had happened and correcting the issue on the sly, the VPS provider sent an email to customers 'fessing up to the attack. "The phishing attack …
Team Register, 21 Jan 2014

Pre-election phishing spike blasts Iranian Gmail accounts

Google has spotted a massive spike in what it believes to be politically-motivated phishing attacks originating from Iran and targeting tens of thousands of web users ahead of Friday’s presidential elections. The Chocolate Factory has spotted several campaigns over the past three weeks, all coming from inside the Islamic …
Phil Muncaster, 13 Jun 2013
The Register breaking news

New class of industrial-scale super-phishing emails threatens biz

Security watchers are warning of a surge of highly convincing spear-phishing emails sent in bulk. More than one in 10 recipients of these so-called longlining* messages click on links to compromised websites because the phishing email look utterly plausible, according to cloud-based security services firm Proofpoint. The …
John Leyden, 04 Mar 2013
The Register breaking news

Cybercrooks send in Bouncer to guide marks to phishing sites

Cybercrooks have begun bundling whitelisting technology with phishing kits in a bid to restrict access to phishing sites to only their intended victims. The tactic of blacklisting IP addresses associated with security firms from accessing banking fraud sites has been in play for at least a few months now, but a new phishing …
John Leyden, 18 Jan 2013
The Register breaking news

Twitter adds email security to help block phishing attempts

Following a recent spate of incidents in which high-profile accounts have been compromised by hackers, Twitter has implemented a security protocol designed to make it harder for fraudsters to send out emails that appear to come from Twitter.com addresses. "We send out lots of emails every day to our users letting them know what' …
Neil McAllister, 21 Feb 2013

Phishing up, malware down, says Google

Google has revealed a new analysis of five years’ worth of data gathered by its Safe Browsing service. The analysis, as any discussion of online security seems obliged to, includes lots of Scary Big NumbersTM, such as the 9500 malware-infected sites the Chocolate Factory says it finds every day or the 12-14 million warnings it …
Simon Sharwood, 20 Jun 2012

EFF claims Vietnam targeted its staff with spear phishing attack

Advocacy group the Electronic Frontier Foundation (EFF) has warned of an uptick in targeted malware attacks by “state-aligned actors” in Vietnam against foreign activists and journalists. In a blog post this week the group complained of a new campaign targeting its own staff – the first of its kind. A suspicious looking email …
Phil Muncaster, 21 Jan 2014
The Register breaking news

Self-pwned: Black Hat says soz for phishing attack scare

Organisers of the annual Black Hat conference have apologised after an estimated 7,500 conference delegates received a suspicious email yesterday resembling a phishing attack. The dodgy email, informing entrants of a supposed password reset, was sent out after a volunteer with ITN International, the third-party firm handling on- …
John Leyden, 23 Jul 2012

Queensland Police warn of tax refund phishing

Queensland Police are warning residents of the Sunshine State about a new phishing scam that sees emails arrive in Australian Taxation Office (ATO) livery, complete with promise of a refund. Such emails are, we imagine here in El RegM’s antipodean eyrie, probably the only email one really wants to open from the ATO. Queensland …
Simon Sharwood, 25 May 2012
The Register breaking news

Six cuffed in £1m student readies phishing probe

Scotland Yard's cybercrime crackdown squad has cuffed suspected crims accused of masterminding a phishing scam that netted more than £1m in cash from hundreds of unsuspecting students. The Met's Police Central e-Crime Unit (PCeU) began an investigation in August after a tip-off that students signed up to a government loan scheme …
Paul Kunert, 09 Dec 2011
The Register breaking news

Google rolls out phishing URL alerts for admins

Google has rolled out a service that alerts administrators when the sites on their networks contain links used in phishing attacks. The Phishing URL notifications are being added to the Safe Browsing Alerts for Network Administrators, which Google rolled out in September. It sends email to admins of autonomous systems when …
Dan Goodin, 15 Oct 2010
The Register breaking news

Websense boosts defenses against spear-phishing, data theft

Websense has added a slew of new defenses with the launched of Triton v7.7, which it says are designed to prevent the advanced data-theft attacks that have emerged as spear-phishing becomes more sophisticated. Of particular interest to security managers will be a focus on detecting the more patient attacks (in industry parlance …
Syrian Electronic Army threat tweet

SEA hacks Reuters website widget DESPITE 2FA security

Hacktivists with the Syrian Electronic Army have hit news agency Reuters again. Surfers intending to catch up with the latest news were briefly redirected to a page run by the Syrian Electronic Army. The page (screenshot via HotforSecurity here) berated Western media reports about the conflict in Syria. The SEA has previous …
John Leyden, 24 Jun 2014
The Register breaking news

Twitter 'Stalker app' just a phishing scam

A "Stalkers app" doing the rounds on Twitter is actually a phishing scam, security watchers warn. The Stalkers app, which purports to be officially sanctioned and to track people who are "stalking your Twitter", is promoted via messages linking to the application, which does nothing except coax victims into handing over their …
John Leyden, 12 Aug 2011
Puss considers how to respond to PayPal marketing overtures

Average chump in 'bank' phone scam is STUNG for £10,000 - study

UK consumers have lost more than £21m to "social engineering" scams where fraudsters impersonated bank employees and tech support since the beginning of the year, according to GetSafeOnline. A range of tactics including phishing emails, fraudulent phone calls asking for personal or financial information or phone calls from …
John Leyden, 26 Jun 2014

Google's URL-hiding 'origin chip' is 'backburnered'

Google has “backburnered” a controversial feature that would have hidden full details of web addresses from Chrome users. The feature was called “origin chip” and, as we explained a few weeks back it removed all the characters beyond the top-level-domain from Chrome's Omnibox, as you can see below. The ad-slinger's rationale …
Simon Sharwood, 11 Jun 2014

Poison PDF pusher released to public

Attacking enterprises just got easier with the development of an idiot-friendly tool that spits out booby-trapped PDFs with a few clicks. The tool weaves existing exploits into PDFs, allowing attacks against Adobe Reader and Acrobat versions 8.x prior to 8.2.1 and 9.x before 9.3.1. Users can insert their own URL pointers into …
Darren Pauli, 12 Jun 2014
Money image

Hackers steal trade secrets from major US hedge firm

Criminals have successfully attacked a hedge fund, delaying trades and stealing profitable secrets in a rare direct raid on the financial services sector, according to BAE Systems Applied Intelligence. The clever hack cost the unnamed US-based hedge fund millions of dollars over two months, the firm alleges. Attackers apparently …
Darren Pauli, 23 Jun 2014
Chrome Canary

You'll hate Google's experimental Chrome UI, but so will phishers

Phishers might have a tougher time hooking victims if a new feature introduced into the experimental strain of Google's Chrome browser makes it into a future full release. The "origin-chip" feature cleans up Chrome's omnibox – or address bar – by removing lengthy URLs and replacing them with just the domain name shorn of "http …
Darren Pauli, 05 May 2014
Remy from Ratatouille

Another RAT crawls out of the malware drain

Yet another banking trojan has appeared, using browser hooking to steal data from Internet Explorer, Chrome and Firefox users. Dyreza, or Dyre, is pitched the usual way, via a phishing e-mail (a lesson that's never learned well enough for the approach to fail), and the e-mail contains what purports to be a zipped document that …

British Gas Twitter account hijacked by mystery phishermen

An official British Gas Twitter account was hacked over the weekend as part of a phishing scam designed to harvest Twitter login credentials. The account @BritishGasHelp, which is normally geared towards helping people with boiler breakdowns and other queries, was taken over to push a series of ostensibly jokey tweets. The …
John Leyden, 23 Jun 2014
The Register breaking news

Finnish police close case on phishing Trojan gang

Finnish police closed on investigation on Tuesday after arresting 17 people suspected of involvement in a banking Trojan scam used to siphon off hundreds of thousands of euros held in accounts with Nordea Bank. The alleged perpetrators, from Estonia and Finland, attempted to steal €1.2m through a series of over 100 false …
John Leyden, 10 May 2011
chalk outline of  human body at crime scene

Hi-tech Fagin couple used Apple scam cash to fly pickpockets to UK

A pair of phishing fraudsters each received long jail terms after they were convicted of making £15,000 through online scams before using the funds to finance the travel of other crooks into the UK. Constanta Agrigoroaie, 23, and Radu Savoae, 28, both of Mornington Avenue, Ilford, both pleaded guilty to conspiracy to commit …
John Leyden, 18 Jul 2014
The Register breaking news

Norton blocks Facebook as 'phishing site'

Symantec has withdrawn an update to its Norton consumer security software that branded Facebook a phishing site on Wednesday. The snafu meant that users of Norton Internet Security were blocked from accessing the social networking site and were told a "fraudulent web page" had been blocked, as illustrated in a discussion thread …
John Leyden, 14 Oct 2011
internet explorer 8

Redmond slow to fix IE 8 zero day, says 'harden up' while U wait

Microsoft has decided not to rush out a fix for an IE 8 zero-day first identified seven months ago, instead telling users to harden up their browsers. The vulnerability allowed attackers to execute arbitrary code on computers running the older Internet Explorer version 8 through drive-by and phishing attacks. Details were made …
Darren Pauli, 22 May 2014
The Register breaking news

Scareware scammers now phishing for punters

Scareware scammers are targeting credit card users with a new run of spam emails falsely warning recipients that their plastic has been blocked. The fraudulent emails, which resemble those more commonly seen in phishing or banking Trojan attacks, are fairly detailed and attempt to trick prospective marks into opening an attached …
John Leyden, 02 Aug 2011
The Register breaking news

Free and subdomain hosting lets phishing sites live longer

A growing numbers of phishers are using free domains and subdomain to register net fraud sites, a move that seem to have allowed phishing sites to stay online longer. Official figures from the Anti-Phishing Working Group (APWG) records that around 11 percent of all phishing attacks took advantage of either the free .TK domain …
John Leyden, 27 Apr 2011
Malware

Attackers raid SWISS BANKS with DNS and malware bombs

Attackers suspected of residing in Russia are raiding Swiss bank accounts with a multi-faceted attack that intercepts SMS tokens and changes domain name system settings, researchers have warned. The attacks sported a clever implementation of malware that pointed victim machines to replica phishing bank sites when they attempt to …
Darren Pauli, 23 Jul 2014
The Register breaking news

Money mules are REAL victims of phishing, says Microsoft iconoclast

Microsoft has somewhat controversially claimed that money mules are the ultimate victims of phishing emails, rather than the consumers or banks that cyber-crooks target in online banking scams. Mules act as middlemen who receive funds from compromised bank accounts before sending the bulk of the cash overseas to the organisers …
John Leyden, 30 Mar 2012
Hacker baseball cap

Israel defence ministry, contractors phished by mystery attacker

Individuals in the Israeli Ministry of Defence are among the latest to fall victim to phishing attacks that gave attackers access to a number of the nation's government systems. According to UPI, Israeli security vendor Seculert believes as many as 15 machines were compromised earlier this month. The report quotes Seculert's …

Google researcher says government hack attacks on journos on the rise

Most major news organisations are now the targets of state-sponsored attacks on their security, according to Google security researcher Shane Huntley. According to Reuters, Huntley told the Singapore Black Hat conference on March 28 that his research, conducted in partnership with Citizen Labs' Morgan Marquis-Boire, revealed …
The Register breaking news

German finance ministry tags fraudsters’ phishing form

The German Ministry of Finance has applied some lateral thinking in order to warn potential victims of a new phishing campaign. Fraudulent tax refund emails doing the rounds in Germany seek to con marks into handing over sensitive information in order to claim a tax refund. The scam email uses images pulled from the genuine …
John Leyden, 11 May 2011
The Register breaking news

'Freeware' phishing kit dupes s'kiddies

Skilled malware authors have duped less skilled cybercrooks into doing their dirty work with a new phishing kit. A "freeware" phishing kit posted onto hacker forums poses as a way to set up fraudulent websites pretending to be, for example, PayPal or webmail providers. Spam emails masquerading as security checks are then …
John Leyden, 23 Jul 2010

Plusnet shunts blame for dodgy DNS traffic onto customers' routers

BT-owned telco Plusnet has blamed subscribers who use third-party routers for a rise in hostile DNS traffic that has been crashing its way through the ISP's system. The rebuff came after Sheffield-based Plusnet suffered a nasty outage last Tuesday relating to an unspecified "network error". A Reg reader claimed on Sunday, in …
Kelly Fiveash, 11 Mar 2014

Microsoft confirms: Staff inboxes hijacked amid 'Syrian army' cyber-blitz

Microsoft has finally admitted that an attack on two of its Twitter accounts and an official blog by a pro-Assad hacking group last weekend also compromised internal emails. The Syrian Electronic Army posted to its Twitter feed several screenshots of emails purportedly belonging to Microsoft employees including Steve Clayton, …
Phil Muncaster, 16 Jan 2014

Is that a failed Outlook security update in your pocket or are you pleased to phish me?

Web criminals have fired off Patch Tuesday-themed phishing emails to trick confused users into handing over their login details. Their messages attempt to convince users into visiting a website masquerading as a Microsoft Exchange system, which tries to coax visitors into handing over their email accounts' address and password. …
John Leyden, 15 Oct 2013
The Register breaking news

HMRC warns (again) over tax refund phishing scams

UK taxpayers were officially warned on Friday to have nothing to do with supposed tax refund emails that have begun circulating since the deadline for self-assessment tax returns expired on Monday. The scam emails claim the recipients (prospective marks) are entitled to a tax refund, which can supposedly be claimed after handing …
John Leyden, 04 Feb 2011
The Register breaking news

China goes on attack over Google phishing claims

China has angrily denounced Google's claims that it has uncovered a sophisticated spear phishing attack on key US individuals which originated from the heavily firewalled country. Google said in a blog post that the campaign "affected what seem to be the personal Gmail accounts of hundreds of users including, among others, …
Joe Fay, 02 Jun 2011

Russian Interior Ministry cuffs iPhone ransomware suspects

Russia's Interior Ministry has announced the arrest of two chaps suspected of conducting ransomware attacks on iPhones. The Ministry's statement on the arrests describes a modus operandi that sounds an awful lot like that employed by “Oleg Pliss”, an entity that last month remotely locked iThings in Australia. Apple later …
Simon Sharwood, 10 Jun 2014
Concert tickets Creative Commons licence by flickr user NZ Hamstar http://www.flickr.com/photos/16982169@N03/

Ticketmaster warns phishers using tickets as bait

Australian online ticketing service Tickemaster has been hit by a phishing raid that has defeated Spam filters. Several Reg readers report receiving multiple emails yesterday (Vulture South received nine), all purporting to report newly-purchased tickets. The messages evaded Spam filters, although Gmail has since re-classified …
Simon Sharwood, 11 Jun 2013
The Ultima Tool Chest's fridge

Cybercrooks slide fingers into TELLIES+FRIDGES, spam splurge ensues

Miscreants have launched an Internet of Things-based cyberattack involving household "smart" appliances. The global spam distribution campaign involved more than 750,000 malicious email communications coming from more than 100,000 everyday consumer gadgets. Items such as home-networking routers, connected multi-media centres, …
John Leyden, 17 Jan 2014
A hash

EBAY... You keep using that word 'ENCRYPTION' – it does not mean what you think it means

Confusion reigns over whether or not the 145 million "encrypted" user account passwords swiped from eBay can be practically cracked by crooks. A day has passed since the online tat bazaar admitted its customer database was hacked back in February, and the method of encryption is still not known. We do know what wasn't encrypted …
John Leyden, 22 May 2014
The Register breaking news

Bank details - PAH! Phishers want your FACEBOOK password

The frequency of phishing attacks against UK internet users has tripled over the last 12 months, according to figures from Russian security software firm Kaspersky Lab. Facebook, Yahoo! Google and Amazon are the websites most targeted by phishers in the UK, indicating a diversification away from the traditional target of …
John Leyden, 26 Jun 2013
The Register breaking news

Phishing, cybersquatting scum could ruin gTLD fun for biz

Businesses face extra costs and risks because of new internet domains, but the publication of a list of newly applied-for domains will not allow them to calculate those risks precisely, an expert has said. Last summer directors at the Internet Corporation for Assigned Names and Numbers (ICANN), which is the body that oversees …
OUT-LAW.COM, 15 Jun 2012
Syrian Electronic Army threat tweet

HACKLASH! Syrian Electronic Army's website hacked by angry rivals

The notorious hacktivists of the Syrian Electronic Army have received an unwelcome dose of their own medicine, after their official website was defaced by a Turkish hacking crew. TurkGuvenligi compromised the Syrian Electronic Army’s official sea.sy website after the pro-Assad group’s hosting firm was breached. It's unclear …
John Leyden, 15 Jan 2014
Syrian electronic army

Hacked Israel Defence Force Twitter account spruiks nuke leak fears

Hacker outfit the Syrian Electronic Army (SEA) hours ago cracked Israel's Defence Force (IDF) Twitter account where it posted a fake warning of a possible nuclear leak due to rocket strikes. The group posted under the IDF (@IDFSpokesperson) account of a "possible nuclear leak in the region after two rockets hit [the] Dimona …
Darren Pauli, 04 Jul 2014
The Register breaking news

Phishing fraud hits two year high

Phishing attacks reached a record high during the second quarter of 2009, with 151,000 unique attacks, according to a study by brand reputation firm MarkMonitor. Brands in the financial and payment services sectors continue to be the favourite targets for fraudulent emails that attempt to trick users into handing over their …
John Leyden, 28 Sep 2009

Dodgy Google, Yahoo! SSL certs nuked in Windows – finally

One week after Google spotted an SSL certificate issuer dishing out certs that could be used to impersonate Google and Yahoo! websites, Microsoft has taken action to block the illicit certificates from being used on its software. The certs, issued by India's National Informatics Centre (NIC), were detected on July 2 by Google's …
Iain Thomson, 10 Jul 2014
The Register breaking news

Slack bank practice creates opportunity for phone phishing scams

There is a scene during the underrated '70s conspiracy thriller Three Days of the Condor when Robert Redford's bookish spy is asked to verify his identity when calling into base. He resists, insisting that the person who took his call needs to verify their own identity before he gives anything away. Authentication ought to work …
John Leyden, 05 May 2011