Viewing posts tagged Phishing and Fraud
estonian-phisher-nabbed
Posted by: admin 16 years, 5 months ago
"Pau said the suspect stole the money by infecting thousands of computers with a clever - and for a long time undetectable - trojan that transmitted their personal information, including internet banking account numbers and passwords, to him."highly-highly-targeted-attacks-against
Posted by: admin 16 years, 5 months ago
I've blogged in the past about targeted phishing attacks and Alex Eckelberry has analyzed a particularly nasty example.. According to the Register the scam is highly targeted:
the BBB scam is narrowly targeted and is aimed at those who are likely to have the most sensitive information to lose. No more than one executive of a company is targeted, and the email goes to great lengths to get the names of the exec and the exec's company correct.What's not clear is whether the attackers are trying to get corporate information from an executive's PC or just personal information from high-value targets. More than likely the answer is both
hsbc-accuses-competitors-of-competing
Posted by: admin 16 years, 5 months ago
From ZDNet UK:
Speaking at the Gartner IT Security Summit 2006, Brendan Pickering, group head of fraud technology at HSBC, accused rival banks of getting into an "arms race" approach to authentication.What is next? Lowering interest rates to gain market share? Having people in a branch? Advertising? Where will it stop?
anatomy-of-a-phishing-attack-response
Posted by: admin 16 years, 5 months ago
There is a great article with superb detail over on the Gonzo Banker site about how a bank responded to a phishing attack:eat-the-rich
Posted by: admin 16 years, 5 months ago
I found this interesting from a risk-management perspective for financial service firms: Atlanta-based WiFi security provider AirDefense says they are seeing "Evil Twin" attacks in locations that cater to high-networth individuals, such as: "first class lounge of an international airport, and in garages that specialize in expensive cars that offered Wi-Fi while you wait. Train station lounges had also been targeted."
Recent Posts
- Blast-RADIUS attack
- The latest WiKID version includes an SBOM
- WiKID 6 is released!
- Log4j CVE-2021-44228
- Questions about 2FA for AD admins
Archive
2024
2022
- December (1)
2021
2019
2018
2017
2016
2015
2014
- December (2)
- November (3)
- October (3)
- September (5)
- August (4)
- July (5)
- June (5)
- May (2)
- April (2)
- March (2)
- February (3)
- January (1)
2013
2012
- December (1)
- November (1)
- October (5)
- September (1)
- August (1)
- June (2)
- May (2)
- April (1)
- March (2)
- February (3)
- January (1)
2011
2010
- December (2)
- November (3)
- October (3)
- September (4)
- August (1)
- July (1)
- June (3)
- May (3)
- April (1)
- March (1)
- February (6)
- January (3)
2009
- December (4)
- November (1)
- October (3)
- September (3)
- August (2)
- July (5)
- June (6)
- May (8)
- April (7)
- March (6)
- February (4)
- January (427)
2008
- December (1)
Categories
- PCI-DSS (2)
- Two-factor authentication (3)
Tags
- wireless-cellular-mobile-devices (7)
- Two-factor authentication (10)
- Wireless, cellular, mobile devices (6)
- NPS (1)
- Phishing and Fraud (111)
- Active Directory (1)
- pam-radius (3)
- privileged access (2)
- Cloud Security (10)
- Mutual Authentication (60)
- Web Application Authentication (1)
- Authentication Attacks (99)
- pci (50)
- Security and Economics (97)
- WiKID (133)
- pam (2)
- VPN (1)
- Installation (2)
- RADIUS Server (1)
- Open Source (64)
- Tutorial (2)
- Strong Authentication (35)
- Information Security (137)
- Transaction Authentication (13)
- Miscellaneous (100)
- Linux (2)
- transaction-authentication (6)
- Two Factor Authentication (254)