Phishing attack uses pop-up message on bank sites - Security Bytes

IT Knowledge Exchange

Register

Forgot Password

Site FAQ

Advertisement

Home > IT Blogs > Security Bytes > Phishing attack uses pop-up message on bank sites

» VIEW ALL POSTS Jan 13 2009 11:51AM GMT

Phishing attack uses pop-up message on bank sites

Posted by: Robert Westervelt

Information Security Threats, Data Breaches and Identity Theft, Identity and access management

Researchers at security vendor Trusteer have discovered a new phishing method that forces pop-up login messages to appear on legitimate banking websites.

The messages trick users into giving up passwords, account numbers and other sensitive information. Sometimes the messages appear after they have logged into an online banking or other financial website, Trusteer said.

Tr usteer issued an advisory on their find. The technique is called Session Phishing, and is used after attackers inject malicious code into major browsers.

Trusteer CTO Amit Klein said the method makes phishing attacks more likely to be successful because they try to trick people after they have logged into a legitimate website. Klein said the major browser makers have been notified.

I can see how the phishing attack can easily trick people. Trusteer said the pop-up window sometimes requests the user to retype their username and password because the session has expired. How many times have you had that happen? It sometimes also asks users to complete a customer satisfaction survey or participate in a promotion. I typically stay away from those and so should you.

Two researchers recently wrote a report outlining how phishers are failing to make a ton of money. The report, which we wrote about last wee k, said there were too many phishers driving down the price cybercriminals pay for stolen information. There’s varying opinions on this report and some are immediately doubting it because it came from Microsoft Research. More on that in another post.

Comment

RSS Feed

Comment on this Post

You must be logged-in to post a comment. Log-in/Register

Eirik Iverson | Jan 13 2009 2:52PM GMT

The security within web browsers is awful. There is little to no compartmentalization within the browser, keeping stuff that came from one web server separate from stuff from another. A javascript from an advertisement should be unable to access ’stuff’ from another web server serving content to another browser tab, for example.

I recommend that people use two or more web browsers. One does sensitive stuff, the other everything else. More on that here:
<a href="http://www.securitynowblog.com/endpoint_security/dual-web-browsers-can-avoid-information-disclosures" title="http://www.securitynowblog.com/endpoint_security/dual-web-browsers-can-avoid-information-disclosures" target="_blank">http://www.securitynowblog.com/endpoint_…</a>

Visit Information Security Home | Information Security News | Information Security White Papers | Information Security Videos | Information Security Resources

Ask an IT Question

About the Blogger

Marcia Savage

As features editor for Information Security magazine, Savage writes and edits features and columns. She also writes and edits for SearchFinancialSecurity.com. She has been a journalist for 19 years, and has covered technology for the past 11. Before joining Tech Target in 2005, she was West Coast Bureau Chief at both SC Magazine and CRN. At CRN, she led the publication's security coverage and also reported on the microprocessor market. Prior to her technology reporting, she worked as a staff writer at daily newspapers in Medford, Ore., and Davis, Calif., where her writing won regional journalism awards. READ MORE

>> READ MORE ABOUT THE BLOGGERS

Browse This Blog's Tags

Adobe Flash, Antivirus, antivirus software, Application Security, banking Trojan, cloud security services, Compliance, Conficker, cybersecurity coordinator, Data Breaches and Identity Theft, Data Breaches and Identity Theft, data security, DHS, DLP technologies, federal cybersecurity, Firefox security, Identity and access management, Information Security Careers, Information Security Threats, Laws, Investigations and Ethics, malicious URLs, Microsoft Security, Microsoft Security Essentials, Mozilla security, Network Security, patch management, patching, PCI compliance, Phishing, Platform Security, Privacy, Project Minerva, ransomeware, Rogue Antivirus, Security, security budgets, security jobs, Security Management, security research, Security Vendor News, ShmooCon, shortened URLs, social engineering, social networking flaws, tokenization, Twitter security, Uncategorized, web application flaws, webmail security, Zeus Trojan

Security Wire Daily News

brought to you by SearchSecurity.com

Exploit code targets Internet Explorer zero-day display flaw
Exploit code is publically available targeting an Internet Explorer cascading style sheet (CSS) handling error, according to Symantec.

Increase in Gumblar backdoors poses FTP credential problems
Security Researcher explains how to detect the Trojan, but many victimized website owners don't have the technical expertise to fix the problem.

Hackers to sharpen malware, malicious software in 2010
Symantec researchers predict an increase in attacks using social network architectures, third-party applications and URL shortening services.

Health Net healthcare data breach affects1.5 million
A lost hard drive contained seven years of patient data including Social Security numbers and medical records of more than a million Health Net custom...READ MORE

Massive T-Mobile UK security breach involves insiders
A UK agency suspects insiders are behind a massive data breach at T-Mobile UK where customer data was pilfered and sold to competitors.

Blog Roll

Help

Subscribe to Alerts

RSS feed of Security Bytes

Community Blog | About Us | Contact Us | FAQ | Terms of Use | DMCA Policy

TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organization's IT projects - with its network of technology-specific Web sites, events and magazines.

All Rights Reserved, Copyright 1999-2009, TechTarget | Read our Privacy Policy | Site Map

Podcast Powered by podPress (v8.8)