Free Newsletter
Register for our Free Newsletters
Newsletter
Zones
Access Control
LeftNav
Alarms
LeftNav
Biometrics
LeftNav
Detection
LeftNav
Deutsche Zone (German Zone)
LeftNav
Education, Training and Professional Services
LeftNav
Government Programmes
LeftNav
Guarding, Equipment and Enforcement
LeftNav
Industrial Computing Security
LeftNav
IT Security
LeftNav
Physical Security
LeftNav
Surveillance
LeftNav
View All
Other Carouselweb publications
Carousel Web
Defense File
New Materials
Pro Health Zone
Pro Manufacturing Zone
Pro Security Zone
Web Lec
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
 
News

Aladdin discovers widespread phishing attacks aimed at eBay customers

Aladdin Knowledge Systems : 10 September, 2007  (Sponsored Features)
eBay users targetted in phishing scam aimed at extracting personal details and information about eBay purchases
The Aladdin eSafe Content Security Response Team (CSRT) has uncovered significant new details surrounding the eBay Botnet.asp">Botnet attack it first discovered on Monday. The attack, which is one of the first of its kind to employ extremely complex, multi-stage attack methods, performs a distributed and covert brute force attack on eBay accounts in an effort to obtain personal information and/or items sold/purchased via the eBay site. Two new details provided by the Aladdin eSafe CSRT were made available this afternoon: Threat employs phishing - Aladdin researchers identified cases where victims have entered their credentials in phishing sites controlled by the attackers, giving further opportunity for the attackers to quickly gain access to an even larger number of accounts. The phishing operation appears to be ongoing and continues to collect user information. Aladdin researchers have validated cases in which the Botnet.asp">Botnet collected active eBay account details. Potential UK focus - Aladdin security specialists have identified that a high percentage of the threat's efforts are targeted specifically at UK-based eBay account holders. The Trojan appears to separate its handling of accounts, distinguishing between accounts inside and outside of the United States. "Through new infection and attack methods, this targeted threat shows that Trojans are continuing to evolve into extremely dynamic, adaptive tools for online criminals, resulting in a potentially damaging aftermath for its individual victims," said Ofer Elzam, director of product management for the Aladdin eSafe Business Unit and head of the Aladdin eSafe CSRT. "This eBay Botnet.asp">Botnet attack is unique, and definitely not found through traditional security measures. Aladdin's innovative security specialists are closely monitoring this new threat and are notifying the Web sites we determine are infecting Web surfers." First discovered by the Aladdin eSafe CSRT, the first-of-its-kind threat uses a sophisticated Trojan that infects visitors of hacked Web sites worldwide. It then uses infected computers to conduct a sophisticated distributed attack on eBay accounts in an effort to steal personal financial information and potentially alter settings that can place sold items in the wrong hands. Aladdin researchers estimate the threat has gone undetected for several days and that hundreds of popular Web sites, regardless of local language or geography, could be affected and are still infecting visitors. Continued momentum has been logged by the Aladdin eSafe CSRT, citing research gained through Aladdin's eSafe SecureSurfing solution - a solution deployed by ISPs to block malware before it reaches their customers. The Aladdin CSRT continuously monitors online security events discovered by the SecureSurfing service in search of further details surrounding this complex threat.
Bookmark and Share
 
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
 
   © 2012 ProSecurityZone.com
Netgains Logo