Privacy Logo
Privacy board Logo
Last update: 07/03/09 18:01
Privacy RSS Feeds 		Full Disclosure

'Phishers crack token-based security'

* Privacy * Security * Surveillance * Blog * 4551

"If you have nothing to hide, why do you have curtains?" -Will Dwyer III
Post your related message now.

• Ebooks and Programs: InvestigationsSpy SoftwareAnti-Spyware

(Login / Register)
Interact
  • Twitter This
  • Facebook This
  • Photo Gallery
If you have any questions or comments, please post a new message or a follow up.
Related Resources
Privacy ebooks
More: Phishing

Phishers crack token-based security

Robert McMillan (NewsMaster) -

Over the past few weeks, approximately 35 phishing Web sites have been set up that use the new attack. They attempt to trick users into divulging the temporary passwords created by the security token devices used by banks such as Citigroup, said Rich Miller, an analyst with Internet research company Netcraft.

Phishers have only recently begun looking for ways around token authentication, using what is known as a "man-in-the-middle" attack, Miller said. "These attacks are worrisome because they took advantage, fairly early on, of a system that's seen as enhancing security for banking customers," he said.

Follow the link to read the full story. Comment on it here.

Comment #1 imaginarydivabc from vancouver, bc -

I run an ebay store and these phishers are driving me up the wall! And the latest phishing emails that I've been receiving are these complaint emails saying they never received their product. When will they ever end?

Comment #2 Sweetness from Earth, the Universe -

Unfortunately for Joe/Jane Public this phishing will never end. The reason I say that is because it has proven profitable. These people are willing to go through 1, 000 people just to get one bite. But the odds are that they are getting bites from about 2 in each 300.

It's amazing how few people question authority or authority figures. Unfortunately for them a lot live in countries where they can't question authority so they have become attuned to having questions asked and if you don't answer them then you get in trouble with the law or the government.

So they see something like this and they fall for it hook, line and sinker. Also people in North America and modern countries around the world have suckers born every minute and that's what the phisher's count on.

Comment #3 Milly from Wisconsin -

Yes sweetness that is true. I get these emails all the time and love to respond to them! Well at least they got one bad apple. 1 down 3 million to go!

Comment #4 itsmrsjonesy from * -

I get these emails all the time also, especially ones that show a purchase from ebay. I receive a fake paypal notice showing where I paid a seller x amount of dollars, and there is the link to click if I didnt authorize the payment. I am so tired of those things!

Comment #5 Destiny (63.176.159.83) -

I'm not sure if I know what these emails or websites look like.
You are not logged in. It is recommeded that you post messages and comments with a Privacy profile. You can login or register. You will be protected from spam and have more features. Registration is quick and easy. You can also post as a casual user with the form below. Your IP address will be published with your email address (if provided below).

Submit a follow up to this message.

Please submit a new reply here. HTML is not allowed and you are encouraged to seperate your paragraphs with a double blank line for readablity. More fun in the sun. Please make sure your message is interesting and relevant to Phishing, and this message: If you wish to start a new message click here. Privacy

Phishers crack token-based security; Phishing

Everything you enter will be published. 

Name:           
E-Mail:         

Optional (please add to our directory first)
Web Link:       
Link Title:     

Message:
Submit Reply. Please do not submit the same message more than once.


fdboard.topic
Find or sell your dream home

* www * com *

Full Disclosure first published on paper in 1984. Full Disclosure Live broadcast on World Wide Shortwave. Now fulldisclosure.org is your voice. Have you added a link to us from your website? (4551):

  • <a href="http://board.fulldisclosure.org">Privacy</a>
  • <a href="http://board.fulldisclosure.org/Phishing">Phishers crack token-based security; Phishing</a>
Phishers crack token-based security; Phishing

Website copyright (c) 2006-2009 GLR Sales LLC.


>
(urzwiuzwypzor)

Privacy Policy -- Those who twitter us!
Phishing 'Phishers crack token-based security'