Home / News

Phishing Attack Attempts to Steal Consumer Data via Bogus Live-Chat Support

  • Sep 16, 2009 12:47 PM PDT
  • Comments: 0
  • Views: 3,889
Print Comment
By CircleID Reporter

Security experts at RSA Research Lab have reported the discovery of a new type of phishing attack targeted against online banking customers that combines a typical phishing website with a live change session initiated by fraudsters. The technique dubbed "Chat-in-the-Middle" not only attempts to trick customers into entering their usernames and passwords into a phishing site but obtains further sensitive information (such as answers to secret questions used by banks to authenticate customers). According to the report, this attack is currently targeting a single U.S.-based financial institution, however operators of all online banking websites are cautioned.

Related topics: Cybercrime, Security

WEEKLY WRAP — Get CircleID's Weekly Summary Report by Email:
Print Comment

Comments

To post comments, please login or create an account.

Related Blogs

Anti-Spoofing, BCP 38, and the Tragedy of the Commons

  • Aug 01, 2014
  • Comments: 0

Some Internet Measurements

  • Jul 25, 2014
  • Comments: 0

What Should PGP Look Like?

  • Jul 23, 2014
  • Comments: 0

Watch LIVE: Edward Snowden at HOPE-X Today at 2:00pm EDT (18:00 UTC)

  • Jul 19, 2014
  • Comments: 0

A Great Bit of DNSSEC and DNS at IETF 90 Next Week

  • Jul 18, 2014
  • Comments: 0
View More

Related News

Google Announces Project Zero to Secure the Internet

  • Jul 15, 2014
  • Comments: 0

DDoS Attacks Shutdown Several World Cup Websites

  • Jun 12, 2014
  • Comments: 0

Popular RSS Reader Feedly Suffers Back to Back DDoS Attacks, Held for Ransom

  • Jun 12, 2014
  • Comments: 0

Paul Vixie on How the Openness of the Internet Is Poisoning Us

  • Jun 10, 2014
  • Comments: 2

Sophia Bekele: The AUCC Debate on Cybersecurity Needs to Involve All Stakeholders

  • Apr 04, 2014
  • Comments: 0
View More

Topics

Access ProvidersLaw
BroadbandMalware
CensorshipMobile
Cloud ComputingMultilinguism
CyberattackNet Neutrality
CybercrimeP2P
CybersquattingPolicy & Regulation
Data CenterPrivacy
DNSRegional Registries
DNS SecurityRegistry Services
Domain NamesSecurity
EmailSpam
EnumTelecom
ICANNTop-Level Domains
Internet GovernanceVoIP
Internet ProtocolWeb
IP AddressingWhite Space
IPTVWhois
IPv6Wireless
View More

Industry Updates – Sponsored Posts

New from Verisign Labs - Measuring Privacy Disclosures in URL Query Strings

DotConnectAfrica Delegates Attend the Kenya Internet Governance Forum

3 Questions to Ask Your DNS Host about Lowering DDoS Risks

Continuing to Work in the Public Interest

  • By PIR
  • Views: 2,814

Verisign Named to the OTA's 2014 Online Trust Honor Roll

4 Minutes Vs. 4 Hours: A Responder Explains Emergency DDoS Mitigation

Dyn Acquires Internet Intelligence Company, Renesys

  • By Dyn
  • Views: 2,782

Tips to Address New FFIEC DDoS Requirements

Smokescreening: Data Theft Makes DDoS More Dangerous

dotStrategy Selects Neustar's Registry Threat Mitigation Services for .BUZZ Registry

24 Million Home Routers Expose ISPs to Massive DNS-Based DDoS Attacks

What Does a DDoS Attack Look Like? (Watch First 3 Minutes of an Actual Attack)

Joining Forces to Advance Protection Against Growing Diversity of DDoS Attacks

Why Managed DNS Means Secure DNS

Rodney Joffe on Why DNS Has Become a Favorite Attack Vector

Motivated to Solve Problems at Verisign

Diversity, Openness and vBSDcon 2013

Neustar's Proposal for New gTLD Collision Risk Mitigation

IT Project Management: Best Practices in Small-Scale Engagements

DDoS Attacks in the United Kingdom: 2012 Annual Trends and Impact Survey

View More

Sponsored Topics

Neustar

DNS

Sponsored by
Neustar DNS Services
Afilias

DNS Security

Sponsored by
Afilias
Neustar

DDoS

Sponsored by
Neustar DDoS Protection
Minds + Machines

Top-Level Domains

Sponsored by
Minds + Machines
Verisign

Security

Sponsored by
Verisign
dotMobi

Mobile

Sponsored by
dotMobi
View All Topics