Users too trusting with personal data…
By Darren Osborne and Alex Serpo
Published: 9 April 2008 08:31 BST
Social-networking websites are fast becoming a key target for online fraud, according to Symantec's latest Internet Security Threat Report.
The report reveals that, for the second half of 2007, there were 87,963 "phishing hosts", an increase of 167 per cent from the first half of 2007. The report states "66 per cent of phishing attacks in the US were directed towards social-networking sites".
Security from A to Z
Click on the links below to find out more...
A is for Antivirus
B is for Botnets
C is for CMA
D is for DDoS
E is for Extradition
F is for Federated identity
G is for Google
H is for Hackers
I is for IM
J is for Jaschan (Sven)
K is for Kids
L is for Love Bug
M is for Microsoft
N is for Neologisms
O is for Orange
P is for Passwords
Q is for Questions
R is for Rootkits
S is for Spyware
T is for Two-factor authentication
U is for USB sticks/devices
V is for Virus variants
W is for Wi-fi
X is for OS X
Y is for You
Z is for Zero-day
Symantec Australia managing director Craig Scroggie said social-networking sites are a treasure trove of personal data, listing information such as birthdays, location and employment history.
Scroggie said: "[Users of these] websites are putting up a large amount of confidential information that is being used for fraudulent activity and financial gain." The Symantec report notes social-networking sites are attractive to cybercriminals because such pages "are generally trusted by users".
Personal information is collected and sold on the internet black market, for as little as $1. Scroggie said: "We're starting to see the area mature significantly."
The report also notes vulnerabilities in websites are increasingly popular malware vectors as they allow for more sophisticated and multi-stage attacks.
Scroggie added that some people used the proceeds of these sales to fund further attacks. "People are employing programmers dedicated to the production of those threats," Scroggie said.
While the report found that most attacks continue to occur and originate in the US, China is becoming increasingly important as a source of malicious code.
Scroggie said: "Russia was implicated in the widespread distribution of malicious code over the last couple of years. That dropped off in 2007 but [security threats] have recently re-emerged in China."
Scroggie said the spread of malicious code was expected to increase, with the growing use of portable data-storage devices. "There is an increased security threat from portable media devices, whether it be a USB flash drive or an MP3 player," he said.
Original article: Phishers seek friends on fake Facebook from ZDNet Australia
Graduate Programmer with Lotus Notes Graduate Programmer with Lotus Notes: A fantastic opportunity not to be missed out of has arisen for a Graduate ...
We are currently looking for a Junior Lotus Notes Administrator to work for a Global ITCompany in the Czech Republic. If you have experience ...
Pre Sales Engineer sales Engineer Pre Sales Consultant Account Manager Sales network security network IT MIS software vendor Network Security ...
Agenda Setters 2008
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.
Stories from the web...
Copyright © 2008 CBS Interactive Limited. All rights reserved. Top of page
Digg
Slashdot
Del.icio.us
Stumble
Reddit
RSS Feeds
Naked CIO Naked CIO: Should you monitor staff? Somebody's watching you
Elinor Mills Why 1970s hackers had 'whiz kid' status Q&A: Kevin Mitnick - blackhat hacker turned good guy