Tumblr 101: Tips And Tricks To Get Started
Sebastian Thrun: Google's Driverless Car
'Chat-in-the-Middle' Phishing Scam Tricks You With Instant Messages
The new twist, though, appears after the marks have entered their log-in information. Typically, once phishing victims enter their ID and password, they're redirected to a dummy Web site created by the grifters. The Chat-in-the-Middle scheme, though, incorporates a fake real-time support chat window (even if you don't have an IM service installed), through which the scammers try to dupe their targets into divulging pertinent personal information like names, addresses, and phone numbers.
So far, RSA has only discovered one instance of the attack, which seems to only target one specific bank (kept anonymous for security concerns). The firm believes, though, that the technique could be refined and more widely perpetrated. So, always be wary of entering information into any site or log-in screen, particularly if you are not sure of its authenticity, and if you bank on-line, watch out for mysterious chat windows. For further phishing prevention you can check out the handy Switched guide right here. [From: RSA and CNET]
16 Grammys Looks That Weren't Working
Whitney Houston Autopsy: Cause of Death Determined?
Worst Movie Mistakes: Date Night Edition (PHOTOS)
Whitney Houston, Bobbi Kristina: Late Singer's Daughter Hospitalized
Adele Five-Year Break? Singer Plans to Focus on Relationship, Write 'Happy Record'
PHOTOS: President Obama's Kissing Technique
Jennifer Hudson Whitney Tribute: Grammy President Reveals Why Singer Was Chosen for Musical Memorial
Grammy 2012 Winners' List: Adele Sweeps Music's Biggest Night
How Hattie Lost 300 Pounds: 'I Was Ready To Do Whatever It Took To Survive'
3 Economic Misconceptions That Need to Die
5-Hour Energy: A Success Equal Parts Caffeine, Chemistry and Meditation
Matt Bomer Comes Out As Gay
People With Easy-To-Pronounce Names More Likely To Succeed, Study Says
Katy Perry Grammy Performance 2012: Did the Diva Diss Her Ex-Hubby With Revealing New Song?
Photos Of Dead Lacrosse Player's Injured Body Shown To Jury
Whitney Houston Dead: Stars React to Legend's Sudden Death
Grammy Awards 2012: The Best & Worst Of The Red Carpet!
12 Grammys Stars Who Gave Good Style
The Top 10 Slacker Colleges
15 Funny Valentine's Day Cards
Mystery Disease Kills Thousands
WATCH: 25 Million Tons Of Japan Tsunami Debris Headed Directly Our Way
Oprah Under Fire For Controversial Tweet
Remembering The People's Ballerina
PHOTOS: Thank God For Grown-Up Glamour
JUNGLE SURVIVAL: Marines Drink Snake Blood, Eat Insects
New Clues, Details Emerge In Powell Case
PHOTOS: Model Falls At Dennis Basso Show
Scuba-Diving Murder Trial: Prosecutors Drop One Charge Against Husband
PHOTOS: Kate Spends Valentine's Day Solo!
PHOTOS: Beautiful Scars
15 Funny Valentine's Day Quotes
Comments
1
Subscribe to commentsmashgilSep 21st 2009 12:35PM
Yikes, that's hi-tech. I'd like to see someone turn the tables and somehow get the phishers to divulge personal information through the chat! Still, this is a problem -- the better hackers get at implementing these kinds of features the more legitimate they seem. I can't think of a better case for encryption -- extended validation ssl for the bank website itself, for example, since the green url bar would disappear in the chat window, not to mention the "fake" log-in page. But the idea of phishers reaching out and communicating in real time is both spooky and daring -- one wishes websites implementing encryption were this creative.