Printer Friendly
The Free Library
14,717,104 articles and books
Member login
User name  
Password 
 
Join us Forgot password?

A new phishing attack.


Phishing seams, already one of the main nemeses on the Net, have apparently just become even more sneaky--and ingenious. Now, it appears phishing authors are borrowing some time-tested tactics from computer virus writers to steal personal information from e-mail users.

E-mail filtering Email filtering is the processing of e-mail to organize it according to specified criteria. Most often this refers to the automatic processing of incoming messages, but the term also applies to the intervention of human intelligence in addition to artificial intelligence, and to  firm MessageLabs says it recently began intercepting messages that use the new technique, which in certain cases is completely invisible to victims. Essentially, the tactic redirects a victim's computer to a Web site controlled by a criminal every time the victim types in the Web address of his or her online bank. Even if the victim follows a shortcut (1) In Windows, a shortcut is an icon that points to a program or data file. Shortcuts can be placed on the desktop or stored in other folders, and double clicking a shortcut is the same as double clicking the original file.  or Web browser The program that serves as your front end to the Web on the Internet. In order to view a site, you type its address (URL) into the browser's Location field; for example, www.computerlanguage.com, and the home page of that site is downloaded to you.  favorite link, the computer is seamlessly directed to the criminal's site instead. Once there, it's easy to trick a confused consumer into typing in banking account numbers and logins, because he or she is easily convinced that the destination is the correct banking site.

"It's very nasty," said Ken Schneider, chief architect at antivirus firm Symantec Corp. "(A user) could be doing everything right, but in this case they are still going to the wrong place."

Phishing is already a major problem for both consumers and financial companies, and the scope of the problem continues to grow. The number of phishing attacks swells by about 50 percent each month, according to according to
prep.
1. As stated or indicated by; on the authority of: according to historians.

2. In keeping with: according to instructions.

3.  the Anti-Phishing Working Group The AntiPhishing Working Group (APWG) is a consortium that brings together businesses affected by phishing attacks, businesses that provide security products and law enforcement.

The APWG has more than 2700+ members from more than 1600 companies & agencies worldwide. . Earlier this year, an analyst at Gartner said some 2 million people had fallen for phishing attacks, costing U.S. banks about $2 billion.

The new technique involves changing a little-known piece of software on most Web-ready computers called a "host file." All Web sites have numeric Internet addresses, called IP addresses, that contain a string of four numbers, such as 207.46.150.20. They also have friendly, easy-to-remember names like MSNBC.com. The names and numbers are linked by means of a catalog kept on various computers connected to the Internet called Domain Name Servers. But computers always check a local host file for such a catalog first--and that local host file overrides information contained in the Internet's Domain Name Servers.

So by changing a victim computer's host file, the attacker can change the Web site that computer visits. Typing in MSNBC.com, for example, could point a victim's computer toward a hacker's site instead.

A useless feature

Years ago, before the Internet's domain name system was in place, the local host file was useful, says software engineer and privacy advocate Richard Smith Richard Smith is the name of:
  • Richard Smith (journalist), associate editor of Gay Times magazine
  • Richard Smith (screenwriter/director), BAFTA-winning writer of Trauma
, who operates ComputerBytesMan.com. But now, it's just a relic, he says, kind of like an appendix on Internet software. "It's useless now," he said. "But it's an attack vector The approach used to assault a computer system or network. A fancy way of saying "method or type of attack," the term may refer to a variety of vulnerabilities. For example, an operating system or Web browser may have a flaw that is exploited by a Web site. .... This just points out that at some point you have to age out features and get rid of them."

Host file attacks have been relatively common in recent computer viruses, Smith said. They have been used to siphon off Verb 1. siphon off - convey, draw off, or empty by or as if by a siphon
siphon, syphon

draw, take out - take liquid out of a container or well; "She drew water from the barrel"  traffic destined des·tine  
tr.v. des·tined, des·tin·ing, des·tines
1. To determine beforehand; preordain: a foolish scheme destined to fail; a film destined to become a classic.

2.  for high-profile sites like Google.com toward pornography sites, for example. But this is the first time he'd seen the tactic used in combination with phishing, he said, with phishing, he said. The e-mails intercepted by MessageLabs also include another tactic to trick Internet users--there's no need to click on a link or attachment to become a victim. Simply opening the e-mail is enough to allow the malicious message to alter the host file on a target computer. That part of the e-mail takes advantage of a well-known, relatively old flaw in Microsoft's Internet Explorer Microsoft's Web browser, which comes with Windows starting with Windows 98. Commonly called "IE," versions for Mac and Unix are also available. Internet Explorer is the most widely used Web browser on the market. It has also been the browser engine in AOL's Internet access software. , which can be patched a number of ways. Unlike traditional phishing e-mails, which suggest they are from PayPal, ebay, Citibank or other legitimate source.

www.msnbc.com
COPYRIGHT 2004 A.P. Publications Ltd.
No portion of this article can be reproduced without the express written permission from the copyright holder.
Copyright 2004, Gale Group. All rights reserved. Gale Group is a Thomson Corporation Company.

 Reader Opinion

Title:

Comment:



 

Article Details
Printer friendly Cite/link Email Feedback
Title Annotation:Security
Author:Sullivan, Bob
Publication:Database and Network Journal
Geographic Code:1USA
Date:Dec 1, 2004
Words:597
Previous Article:Pointsec data encryption solution for Linux.(Security)(Pointsec Mobile Technologies AB)(Brief Article)
Next Article:Spy sweeper enterprise.(Security)(growth of spyware usage)(Brief Article)
Topics:



Related Articles
Do-it-yourself phishing kits found on the internet.(Software Digest)(Brief Article)
Taking the bait.(General News)(Internet crooks use `phishing' to hook consumers)
State of siege.(THE LABJ'S L.A. Stories)
Hook, line and sinker: life insurers and their policyholders could be the next targets of online phishing scams.(Technology: IT Security)
Counter threat fraudulent identity theft.(FortiGate of Fortinet Inc.)
Gartner Says Number of Phishing E-Mails Sent to U.S. Adults Nearly Doubles in Just Two Years.
Security news and products; Webwasher6.0 proactive anti-malware protection.(SOFTWARE WORLD DIGEST)
Security news and products; on the menu today is Phish and Spam.(SOFTWARE WORLD DIGEST)
Who can you trust? Trustworthiness is a precious commodity, and online criminals are expert at faking it. Aston Fallen, CEO of Steganos, highlights...
MessageLabs Intelligence Report: Increased Number of Spam Spikes and New Image Spam Techniques Cause Trouble for Businesses.

Terms of use | Copyright © 2009 Farlex, Inc. | Feedback | For webmasters | Submit articles