SANS: Phishing Messages May Include Highly Personalized Information

Phishing messages are becoming increasingly personalized in attempts to convince the recipients to trust originators of the messages. A phishing email recently submitted to us illustrates this trend. In this case, the message that arrived in the victim's inbox included the person's full name and postal address...

The message masqueraded as a CitiBusiness banking alert, claiming that an unauthorized access attempt occured from The "click here" link led to a fraudulent website hosted at The whois record for indicated that the Russian domain was registered a few days prior to the attack. SANS - Internet Storm Center - Cooperative Cyber Threat Monitor And Alert System

Linked by shanmuga Saturday, 18th March 2006 12:54AM