Chinese Bank's Server Used in Phishing Attacks on US Banks
A web server belonging to a state-operated Chinese bank is hosting phishing sites targeting U.S. banks and financial institutions. Phishing e-mails sent on Saturday (March 11) targeting customers of Chase Bank and eBay were directed to sites hosted on ip addresses assigned to The China Construction Bank (CCB) Shanghai Branch. The phishing pages are located in hidden directories with the server's main page displaying a configuration error.
This is the first instance we have seen of one bank's infrastructure being used to attack another institution. Netcraft: Chinese Bank's Server Used in Phishing Attacks on US Banks
Back to: PC Security, privacy news