Phishers develop "smart redirection" attacks

Cybercrooks have developed new techniques in response to increasingly aggressive moves to identify and shut down known phishing sites. In a move designed to ensure potential phishing victims always link to a live website, fraudsters have developed so called "smart redirection" attacks.

Smart redirection attacks involve creating a number of similar phishing websites based at different locations. Bogus emails that form the basis of phishing attacks contain URLs that direct the victim to a single IP address, which hosts the so-called 'smart redirector'. When the potential victim clicks on the link, the redirector checks all related phishing websites, identifying which sites are still live before redirecting the user to one of them. Phishing fraudsters aim to outpace site shutdowns | Channel Register

Linked by shanmuga Thursday, 9th March 2006 2:25AM