Spam and cyberscams follow techniques of legitimate business
Wednesday, July 15, 2009
Cybercriminals such as the botnet operators who unleash spam and malware increasingly borrow techniques from legitimate businesses to make their attacks more effective, according to the mid-year web security report from Cisco.
Driven by the bottom line, cybercriminals have been forming partnerships with one another to help make their illegal activities more lucrative. Botnet owners are renting out their networks of compromised PCs, effectively using the software-as-a-service (SaaS) model to spread spam and malware.
"What is striking in our latest findings is how, in addition to using their technical skills to cast a wide net and avoid detection, these criminals are also demonstrating some strong business acumen," said
Patrick Peterson, Cisco fellow and chief security researcher.
Other tactics of spammers include what Cisco calls "spamdexing," or the use of Blackhat SEO for drawing web traffic to compromised websites. By loading up sites with keywords or search terms, cybercriminals get their hacked sites higher up in search engine rankings.
Traditional spam is now being rivaled by SMS spam on mobile devices. Cisco describes the rapidly growing mobile device audience as a "new frontier for fraud irresistible to criminals," with a field of some 4.1 billion mobile phone subscriptions worldwide.
Related News:
FBI: Law firms and PR agencies high on hacker target lists - 11.18.2009
Using complex email scams, cyber criminals are increasingly targeting sensitive information held by law firms and public relations companies, according to an FBI advisory released earlier this month.
Phishing email takes numerous forms - 11.17.2009
The practice of impersonating authoritative websites and sources in order to convince victims to divulge personal information - known as phishing - has come a long way from the Nigerian "419" scams that popularized the technique in the public mind. Modern phishing is becoming increasingly dangerous in part because attacks can come from a variety of sources.
Email filtering technology working overtime, but spam won't go quietly - 11.16.2009
While modern email filtering systems can block 95 to 99 percent of spam messages, according to Tech Target, mountains of unsolicited email are still delivered every day, accounting for the vast majority of all emails sent.
Phishing scam targets investors, spoofs finance agency - 10.9.2009
The Financial Industry Regulatory Agency (FINRA), an independent regulator of brokerages, is warning investors that they may be targeted by a phishing scam through emails claiming to come from the agency.
Phishing scammers leak Windows Live Hotmail passwords to web - 10.6.2009
Hackers posted thousands of passwords from Windows Live Hotmail email accounts to a website over the weekend, in what Microsoft said was the result of a phishing campaign targeting the free webmail service.
|
