Home / News

Phishing Attack Attempts to Steal Consumer Data via Bogus Live-Chat Support

  • Sep 16, 2009 1:47 PM PDT
  • Comments: 0
  • Views: 4,618
Print Comment
By CircleID Reporter

Security experts at RSA Research Lab have reported the discovery of a new type of phishing attack targeted against online banking customers that combines a typical phishing website with a live change session initiated by fraudsters. The technique dubbed "Chat-in-the-Middle" not only attempts to trick customers into entering their usernames and passwords into a phishing site but obtains further sensitive information (such as answers to secret questions used by banks to authenticate customers). According to the report, this attack is currently targeting a single U.S.-based financial institution, however operators of all online banking websites are cautioned.

Related topics: Cybercrime, Security

 
   
WEEKLY WRAP — Get CircleID's Weekly Summary Report by Email:
Print Comment

Comments

To post comments, please login or create an account.

Related Blogs

Maintaining Security and Stability in the Internet Ecosystem

  • Sep 29, 2016
  • Comments: 0

Exploiting the Firewall Beachhead: A History of Backdoors Into Critical Infrastructure

  • Sep 28, 2016
  • Comments: 0

Increasing the Strength of the Zone Signing Key for the Root Zone, Part 2

  • Sep 28, 2016
  • Comments: 0

DDOS Attackers - Who and Why?

  • Sep 19, 2016
  • Comments: 1

Does Apple's Cloud Key Vault Answer the Key Escrow Question?

  • Aug 24, 2016
  • Comments: 0
View More

Related News

Cameras, DVRs Used for Massive Cyberattack on French Hosting Company and Others

  • Sep 30, 2016
  • Comments: 0

US Senators in Letter to Yahoo Say Late Hack Disclosure "Unacceptable"

  • Sep 27, 2016
  • Comments: 0

What Trump and Clinton Said About Cybersecurity in the First US Presidential Debate

  • Sep 27, 2016
  • Comments: 0

Cybersecurity Regime for Satellites and other Space Assets Urgently Required, Warn Researchers

  • Sep 22, 2016
  • Comments: 0

Yahoo to Confirm Massive Data Breach, Several Hundred Million Users Exposed

  • Sep 22, 2016
  • Comments: 0
View More

Explore Topics

Access ProvidersIPv6
BroadbandLaw
CensorshipMalware
Cloud ComputingMobile
CyberattackMultilinguism
CybercrimeNet Neutrality
CybersquattingP2P
Data CenterPolicy & Regulation
DNSPrivacy
DNS SecurityRegional Registries
Domain NamesRegistry Services
EmailSecurity
EnumSpam
ICANNTelecom
Intellectual PropertyTop-Level Domains
Internet GovernanceVoIP
Internet of ThingsWeb
Internet ProtocolWhite Space
IP AddressingWhois
IPTVWireless
View More

Industry Updates – Sponsored Posts

New TLD? Make Sure It's Secure

Verisign Releases Q2 2016 DDoS Trends Report - Layer 7 DDoS Attacks a Growing Trend

How Savvy DDoS Attackers Are Using DNSSEC Against Us

Facilitating a Trusted Web Space for Financial Service Professionals

MarkMonitor Partners with CYREN to Deepen Visibility into Global Phishing Attacks

Verisign Named to the Online Trust Alliance's 2016 Honor Roll

Verisign Q1 2016 DDoS Trends: Attack Activity Increases 111 Percent Year Over Year

Is Your TLD Threat Mitigation Strategy up to Scratch?

i2Coalition to Host First Ever Smarter Internet Forum

Encrypting Inbound and Outbound Email Connections with PowerMTA

Resilient Cybersecurity: Dealing with On-Premise, Cloud-Based and Hybrid Security Complexities

Verisign Releases Q4 2015 DDoS Trends - DDoS Attack Activity Increasing by 85% Year Over Year

Best Practices from Verizon - Proactively Mitigating Emerging Fraudulent Activities

Neustar Data Identifies Most Popular Times of Year for DDoS Attacks in 2015

The Framework for Resilient Cybersecurity (Webinar)

2015 Trends: Multi-channel, Streaming Media and the Growth of Fraud

Data Volumes and Network Stress to Be Top IoT Concerns

DKIM for ESPs: The Struggle of Living Up to the Ideal

Verisign Mitigates More Attack Activity in Q3 2015 Than Any Other Quarter During Last Two Years

Verisign & Forrester Webinar: Defending Against Cyber Threats in Complex Hybrid-Cloud Environments

View More

Sponsored Topics

Verisign

Security

Sponsored by
Verisign
Port25

Email

Sponsored by
Port25
Afilias

DNS Security

Sponsored by
Afilias
Afilias - Mobile & Web Services

Mobile

Sponsored by
Afilias - Mobile & Web Services
View All Topics