Firm claims auto-phishing emails discovered
Just open them and you're done for
Wednesday, 3 November 2004, 13:23
MESSAGE LABS said it has intercepted emails which auto-capture bank details when they're opened.
It says it interecepted several emails at the end of October targeting three Brazilian banks, but the technique may be used for other banks. Usually, "phishing" emails work by masquerading as legitimate emails from banks and other online services.
But one way of protecting yourself from these auto-phishing attacks is to disable Windows scripting, Message Labs notes.
The mails work by running a script which attempts to rewrite host files of the machine that it's targeting. The next time you attempt to log into an Internet site, you are automatically re-directed to a fraudulent one, allowing your login details to be appropriated. µ
Share this:
Share
Comments
Advertisement
Subscribe to the INQ Newsletter
Sign-up for the INQBot weekly newsletter
INQ Whitepapers
Business Intelligence Software
Customer Relationship Management (CRM)
Enterprise Accounting Software
Enterprise Resource Planning (ERP)
Enterprise Systems Management
Jobs
Advertisement
INQ Poll
