Tumblr 101: Tips And Tricks To Get Started
Sebastian Thrun: Google's Driverless Car
'Chat-in-the-Middle' Phishing Scam Tricks You With Instant Messages
The new twist, though, appears after the marks have entered their log-in information. Typically, once phishing victims enter their ID and password, they're redirected to a dummy Web site created by the grifters. The Chat-in-the-Middle scheme, though, incorporates a fake real-time support chat window (even if you don't have an IM service installed), through which the scammers try to dupe their targets into divulging pertinent personal information like names, addresses, and phone numbers.
So far, RSA has only discovered one instance of the attack, which seems to only target one specific bank (kept anonymous for security concerns). The firm believes, though, that the technique could be refined and more widely perpetrated. So, always be wary of entering information into any site or log-in screen, particularly if you are not sure of its authenticity, and if you bank on-line, watch out for mysterious chat windows. For further phishing prevention you can check out the handy Switched guide right here. [From: RSA and CNET]
Jennifer Aniston's Effortlessly Sexy Style
Whitney Houston Dead: Singer Dies at 48, Body Found in Beverly Hilton Hotel
PHOTOS: Best And Worst Of Grammy Dresses
Whitney Houston, Bobbi Kristina: Late Singer's Daughter Hospitalized
Whitney Houston Dead: Stars React to Legend's Sudden Death
Sheryl Crow Loves To Flaunt Toned Physique
Whitney Houston Autopsy: Cause of Death Determined?
Grammy Red Carpet 2012 (PHOTOS)
TV Shows That Last Too Long
Tips for flying cheaper in 2012
There's only one thing to do when the Nürburgring is covered in snow...
Comforter Soaked In Blood Found In Josh Powell's Storage Unit
Grammy 2012 Winners' List: Adele Sweeps Music's Biggest Night
Tax Reform in This Election Year: It's Not Likely
LINSANITY CONTINUES
Whitney Houston, Bobby Brown: Ex-Husband Honors Singer Onstage
15 Obnoxious Notes From Roommates
Ice Ice Baby: Amsterdam Canals Freeze Solid (PICTURES, VIDEO)
Nic Cage Addresses Vampire Rumors On 'Late Show'
Beyonce & Jay-Z Aim To Trademark Blue Ivy Carter
The Happiest People In The World...
Chloë Moretz Is All Grown Up
White House Bending On Birth Control Rule
Comments
1
Subscribe to commentsmashgilSep 21st 2009 12:35PM
Yikes, that's hi-tech. I'd like to see someone turn the tables and somehow get the phishers to divulge personal information through the chat! Still, this is a problem -- the better hackers get at implementing these kinds of features the more legitimate they seem. I can't think of a better case for encryption -- extended validation ssl for the bank website itself, for example, since the green url bar would disappear in the chat window, not to mention the "fake" log-in page. But the idea of phishers reaching out and communicating in real time is both spooky and daring -- one wishes websites implementing encryption were this creative.