Spear-phishing

Fight back! So don't expect to find lame "fake login screens" or similar stuff here.
Post Reply
User avatar
DNR
Digital Mercenary
Digital Mercenary
Posts: 6114
Joined: 24 Feb 2006, 17:00
18
Location: Michigan USA
Contact:
Contact DNR

Spear-phishing

Post by DNR »

Two groups of criminals have stolen data from an estimated 15,000 victims over the past 15 months, using targeted "spear-phishing" e-mail attacks, according to researchers at VeriSign.

VeriSign has tracked 66 of these attacks since February 2007 and believes that two shadowy crime groups are behind 95% of the incidents.

Unlike traditional phishing attacks, which are sent to millions in hopes of luring some victims to fake Web sites, spear-phishing e-mails contain personal information, such as the name of the victim or his employer's name to make them appear legitimate. In the attacks tracked by VeriSign, victims are tricked into visiting malicious Web sites or opening malicious attachments, which then give attackers a back door onto their PCs so they can steal information.

After tinkering with their attack techniques in the first few months of 2007, the spear-phishers appear to be stepping up their campaigns.

Cost of data breaches varies
Search for articles like this oneAttacks have spiked over the past two months, said Matthew Richard, director of VeriSign's iDefense Rapid Response Team. "The bad guys have really fine-tuned both the delivery methods... as well as their use of the data," he said. "All the e-mails target businesses in some form or another. "

In April, they launched their most successful spear-phish to date. A targeted e-mailing was sent to corporate executives, informing them that they had been sued. This attack worked well because it was novel, Richard said. "The subpoena one really took people off guard," he said. "Especially at the executive level. That fear of litigation certainly scared people."

In May, over 2,000 victims were compromised with spear-phish e-mails claiming to come from the U.S. Internal Revenue Service, the United States Tax Court, and the Better Business Bureau, according to VeriSign.

VeriSign does not expect the spear-phishers to give up anytime soon."Now that they have developed this well-tuned system, they will just keep doing it over and over again" Richard said (Compare Patch and Vulnerability Management products).

http://www.networkworld.com/news/2008/0 ... ml?hpg1=bn
--
One trick sends an e-mail that appears to be a subpoena from a District Court, with a link provided to download more documents. The image looks like it's targeted at a particular person at a specific business, which fits the bill for a custom 'spear' phish. If said person followed the download link, they'd have pulled in a keystroke-logging Trojan, according to Symantec.
--

One new, if uncommon, type of spam listed by Symantec comes in the form of a calendar invite. An attached 'invite.ics' beckoned the recipient to take part in the classic Nigerian 419 scam, a new twist on an old approach.

http://www.networkworld.com/news/2008/0 ... iness.html

DNR 8)
-
He gives wisdom to the wise and knowledge to the discerning. He reveals deep and hidden things; he knows what lies in Darkness, and Light dwells with him.
Top
rhysh
Fame ! Where are the chicks?!
Fame ! Where are the chicks?!
Posts: 767
Joined: 15 Nov 2006, 17:00
17
Contact:
Contact rhysh

Post by rhysh »

lol

spear-phishing
spear-fishing

haha,lol
Top
Post Reply

Return to “Phishing/Spam”