Just when I thought it was safe to trust online banking!
November 10, 2004
Fake URLs - Real Web Pages Can Be Completely Fake: Watch Out For The The Latest Web Threat
According to a PR story released yesterday by SurfControl plc, Internet outlaws, have been able to hack two Australian banks (Citibank and SunTrust). By taking control of a security hole in those Web sites search facility, the "phishers" were able to substitute fake (but perfectly looking) Web pages for the original ones, while showing correct URLs, all with the purpose of diverting customer activity to other ends.
The technique used to carry out this Internet scam is virtually undetectable by a normal Web user like me and you.
The Web pages in question appear identical to the original ones and even the URLs are matching exactly the correct ones one would expect to see.
Apparently, the level of sophistication reached by this Internet scams has evolved to a point where it is very difficult to run effective business transactions online without fearing some possible fraud.
What are the actions that can be taken in the short term to contain and prevent such dangers?
1. Educate users to NEVER volunteer confidential information in response to an unsolicited e-mail. If they are worried that the message may not be legitimate, advise them to contact the company or organization directly.2. Advise users to NEVER follow any link found in an unsolicited e-mail. The simple visit to a Web site could trigger multiple IT threats, including viruses or even a Trojan horse program allowing the spammer to control the computer remotely.
3. Have a clear Acceptable Use Policy, which thoroughly expresses the organization's position on what kind of Web content is acceptable in the workplace.
4. Ensure that all anti-virus and operating system software is up to date.
5. Monitor Internet and spam security resources.
The five recommendations above come from SurfControl, a company that has lots of resources invested in providing timely critical information about new threats and dangers emerging in cyberspace as it is one of the major emerging providers of email and web filtering solutions for enterprise customers.
Conversation Tags:
Readers' Comments
| 2004-11-11 04:40:53 |
Related Articles
December 15, 2003
Fighting Phishing
... read more
October 25, 2004
Rearchitect Security: It's A Jungle Out There!
In his latest Alertbox column published just a few minutes ago, Jakob Nielsen acknowledges finally the dire state of the Internet and the urban jungle it has become. Security issues are rampant and if you are to judge by the number of security reports, patches and... read more
March 1, 2004
Browser Hijacking: Latest Security Freakout For Windows Users
The ongoing Internet-security freakout for anybody using Windows keeps getting worse. Every other week yet another part of the online world gets a warning label slapped on it -- downloads, e-mail attachments, instant-messaging file transfers and now Web pages themselves. "Browser hijacking" is as bad as... read more
August 19, 2004
PC Security? 20 Minutes Is All You Have
Researchers at the SANS Institute's Internet Storm Center estimate that an unprotected PC will be compromised within 20 minutes of being connected to the Internet, down from an estimated 40 minutes last year. The estimate is based on observations of vacant IP addresses, which received reports... read more
January 31, 2002
Security Issues About Microsoft Windows XP
Microsoft has come under fire lately because of their habit of releasing software that has serious flaws, especially with security. Unfortunately, the criticism is justifiable. It even verges on being criminal: flaws (implementation bugs as well as just plain silly design decisions) have resulted in literally... read more
December 15, 2003
Fighting Phishing
... read more
October 25, 2004
Rearchitect Security: It's A Jungle Out There!
In his latest Alertbox column published just a few minutes ago, Jakob Nielsen acknowledges finally the dire state of the Internet and the urban jungle it has become. Security issues are rampant and if you are to judge by the number of security reports, patches and... read more
March 1, 2004
Browser Hijacking: Latest Security Freakout For Windows Users
The ongoing Internet-security freakout for anybody using Windows keeps getting worse. Every other week yet another part of the online world gets a warning label slapped on it -- downloads, e-mail attachments, instant-messaging file transfers and now Web pages themselves. "Browser hijacking" is as bad as... read more
August 19, 2004
PC Security? 20 Minutes Is All You Have
Researchers at the SANS Institute's Internet Storm Center estimate that an unprotected PC will be compromised within 20 minutes of being connected to the Internet, down from an estimated 40 minutes last year. The estimate is based on observations of vacant IP addresses, which received reports... read more
January 31, 2002
Security Issues About Microsoft Windows XP
Microsoft has come under fire lately because of their habit of releasing software that has serious flaws, especially with security. Unfortunately, the criticism is justifiable. It even verges on being criminal: flaws (implementation bugs as well as just plain silly design decisions) have resulted in literally... read more
