'Phishing' scams explode worldwide, researchers shows

Jun 21, 2013

Those insidious email scams known as phishing, in which a hacker uses a disguised address to get an Internet user to install malware, rose 87 percent worldwide in the past year, a security firm said Friday.

These schemes affected some 37.3 million users around in the 12 months to April 30, according to a report by the Russian-based Kaspersky.

"The number of fraudulent websites and servers used in attacks has more than tripled since 2012, and more than 50 percent of the total number of individual targets were fake copies of the websites of banks and other credit and financial organizations," Kaspersky said.

The attackers often use emails purportedly from trusted organizations—Yahoo!, , and Amazon are top targets, according to the report.

Online game services, online payment systems, and the websites of banks and other credit and financial organizations are also commonly used to disguise phishing attempts.

Kaspersky said phishing has become a preferred method of .

"Although the specific targets of phishing attacks vary, the end goal of all engaged in this type of is ultimately the same: to make money illegally," the report said.

"This goal is achieved either by directly stealing cash from the victim, as in the case with fake online banking service pages, online storefronts, and subscriptions to online games."

But attacks may also employ a more indirect approach, including the sale of stolen databases on the black market.

"A large collection of user data may come in handy for malicious users for a number of different fraudulent schemes involving spam mailings and the spread of malware," the report said.

The countries most often hit by phishing attacks were Russia, the United States, India, Vietnam and the Britain.

The location of "hostile servers" was most frequently in the US, Britain, Germany, Russia and India, Kaspersky said.

Explore further: Escaping email: Inspired vision or hallucination?

add to favorites email to friend print save as pdf

Related Stories

Password breach spreads beyond LinkedIn

Jun 07, 2012

More websites admitted security breaches Thursday after LinkedIn said some of its members' passwords were stolen, and experts warned of email scams targeting users of the social network. ...

Google finds hack attempts on eve of Iran election

Jun 13, 2013

(AP)—Google says it has discovered and stopped a series of attempts to hack the accounts of tens of thousands of Iranian users in an effort the company believes is an attempt to influence the country's upcoming election.

China, Romania key sources of hacking, report says

Apr 23, 2013

China and Romania were by far the largest sources of confirmed hacking attempts last year, with China's mostly from state-controlled sources aimed at data theft, a new report said Tuesday.

Recommended for you

US spy agency patents car seat for kids

1 hour ago

Electronic eavesdropping is the National Security Agency's forte, but it seems it also has a special interest in children's car seats, Foreign Policy magazine reported Wednesday.

Country Web domains can't be seized: regulator

4 hours ago

The Internet's regulatory authority said Wednesday that country-specific Web domains cannot be seized in court proceedings, as it sought to quash an effort to recover assets in terrorism-related lawsuits.

User comments : 0