Ruse uses e-mail, Web site to snag account numbers and personal identification numbers
Published:
27 December 2003 y., Saturday
Security experts are warning of a new Internet scam that preys on Visa credit card holders, using e-mail and a specially designed Web site to harvest customer account numbers and personal identification numbers.
The ruse is the latest example of so-called "phisher" scams and comes as one e-mail security company reports incidents of such scams, which use decoy Web pages and spam e-mail messages to trick unsuspecting users into divulging sensitive information, are up 400 percent this holiday season.
Visa International Inc. did not respond to requests for comment.
The new phisher came to light after Internet users began receiving e-mail messages purportedly coming from "Visa International Service." The messages claimed that Visa had implemented a new "security system to help you to avoid possible fraud actions" and asked users to click a link to "reactivate your account," according to messages posted in Full-Disclosure, an online discussion list frequented by computer security experts.
The message contained a Web link that appeared to direct users to www.visa.com, Visa International's official Web site.
However, security experts who looked at the HTML (Hypertext Markup Language) message's source code discovered that the link really directed users to a Web page at an Internet address that does not belong to Visa, according to messages posted on Full-Disclosure.
The Web site has since been taken down.
E-mail security company Tumbleweed Communications Corp. said on Tuesday that reports of e-mail fraud and phishing scams are up 400 percent this holiday period.
Tumbleweed based its findings on reports of scam attacks submitted to anti-phishing.org, a Web site run by the Anti-Phishing Working Group, an industry group that Tumbleweed helped found, the company said in a statement.
Šaltinis:
infoworld.com
Copying, publishing, announcing any information from the News.lt portal without written permission of News.lt editorial office is prohibited.
The most popular articles
Software company announced new structure_ of it_s business.
more »
A number of MEPs urged Internal Market Commissioner Michel Barnier to come up with common rules to regulate cross border online gambling in Europe.
more »
Think before you post as once you do it is online forever. That was the message on Safer Internet Day marked on 9 February by a seminar in the European Parliament.
more »
50% of European teenagers give out personal information on the web – according to an EU study – which can remain online forever and can be seen by anybody.
more »
When did the Commission start working on social networking sites?
more »
ICSA Labs, an independent division of Verizon Business, is the first independent security-product testing and certification laboratory to earn ISO/IEC 17025 accreditation, validating the laboratory's world-class capabilities.
more »
From today, European citizens, businesses and organisations can register .eu website names using characters from all 23 official languages of the European Union.
more »
Authorities investigated 301 mobile phone services websites in follow-up to EU crackdown on misleading consumer practices.
more »
After nearly 2 years of legislative work the Telecom Package is due to be put to a final vote in Parliament on 24 November in Strasbourg.
more »
The Christian Science Monitor reports that three men have been named as being the masterminds behind the hacking of RBS WorldPay, a subsidiary of the Royal Bank of Scotland.
more »
BAI’s Banking Strategies Insights reports that banks must get serious about improving their ATMs, especially in the area of envelope-free deposit.
more »