Phishing scams have grown up from the unsophisticated swindles of the past in which fake Nigerian princes e-mailed victims, who were told they would get a big windfall if they just provide their bank account number.
Even as authorities try to stamp out that con and other e-mail and online scams, scammers are getting more wily and finding new loopholes to exploit.
The vast majority of e-mail is spam and an unknown percentage of that is meant to defraud. The scale of electronic fraud means that the criminals can make huge profits even if only a small percentage of people are duped.
Phishing commonly refers to hoax e-mails purportedly from banks or other trustworthy sources that seek to trick recipients into revealing bank or credit card account numbers and passwords.
The US government scored a big victory in November when the Web hosting company McColo Corp was taken offline. Estimates vary, but the Washington Post said that 75 percent of spam worldwide had been sent through that single company.
But the spam e-mails offering celebrity diets, cheap printer ink, erased credit card debt and amazing orgasms found a new way to inboxes, according to Google’s security subsidiary Postini.
Now spammers use a variety of computers to send out spam e-mails to obscure their origins, meaning that a dramatic McColo-style takedown will be harder to reproduce, said Adam Swidler, product marketing manager for Google’s Postini.
And they’ve largely abandoned scams that are easy to see through — like the Nigerian prince — in favor of sophisticated “location-based spam,” which directs the victim to a Web site discussing a local disaster or similar issue. If they click on the offered video, the Web site downloads a virus to the user’s computer, Google said in a blog on security.
Tim Cranton, a Microsoft cybersecurity expert, said there was no way to know how much money is stolen.
“We don’t have a way to estimate numbers because there are so many victims that you’re not aware of,” he said.
E-con artists are getting more sophisticated in approaching potential victims. One tactic has been to write spam that purports to come from a trusted source, like Paypal.
When Paypal, which is owned by eBay, learned that spammers were using its name, they put a digital signature on their e-mails and asked providers like Yahoo and Google to block any e-mail purporting to come from them that did not have that signature.
“We know how many they throw away and it’s approximately speaking about 10 million a month,” said Michael Barrett, Paypal’s chief information security officer. “If the consumer never sees the e-mail in the first place then it’s hard for them to get victimized.”
“Phishing was not just impacting consumers, in terms of general loss, it was impacting their view of the safety of the Internet and … indirectly damaging our brand,” he said.
Security experts say they are seeing more and more shifts from outright fraud, where the victim will hand over their money, to the use of malware, basically malicious software that, among other things, collects passwords and credit card numbers for thieves.
“Those will then be sold on the underground market,” said David Marcus, a threat research expert at McAfee computer security firm.
The person purchasing the passwords and card numbers will use that information to make purchases, get cash or create fake identities. The Federal Bureau of Investigation, working with police in the UK, Turkey and Germany, shut down one such online forum called Dark Market last October that, at its peak, had more than 2,500 registered members, the FBI said at the time.
But experts agreed that they didn’t expect the problem to go away anytime soon and that more people out of work could mean more people falling for scams.
Marcus said many of the scams were nothing more than the digital equivalent of confidence tricks, although on a massive scale that could net some scammers more than US$100,000 a month.
“These things only have to be 2 percent successful,” he said. “Those campaigns are sent out to tens of millions of people at the same time.”
Also See: The GhostNet in the machine
AIR SUPPORT: The Ministry of National Defense thanked the US for the delivery, adding that it was an indicator of the White House’s commitment to the Taiwan Relations Act Deputy Minister of National Defense Po Horng-huei (柏鴻輝) and Representative to the US Alexander Yui on Friday attended a delivery ceremony for the first of Taiwan’s long-awaited 66 F-16C/D Block 70 jets at a Lockheed Martin Corp factory in Greenville, South Carolina. “We are so proud to be the global home of the F-16 and to support Taiwan’s air defense capabilities,” US Representative William Timmons wrote on X, alongside a photograph of Taiwanese and US officials at the event. The F-16C/D Block 70 jets Taiwan ordered have the same capabilities as aircraft that had been upgraded to F-16Vs. The batch of Lockheed Martin
GRIDLOCK: The National Fire Agency’s Special Search and Rescue team is on standby to travel to the countries to help out with the rescue effort A powerful earthquake rocked Myanmar and neighboring Thailand yesterday, killing at least three people in Bangkok and burying dozens when a high-rise building under construction collapsed. Footage shared on social media from Myanmar’s second-largest city showed widespread destruction, raising fears that many were trapped under the rubble or killed. The magnitude 7.7 earthquake, with an epicenter near Mandalay in Myanmar, struck at midday and was followed by a strong magnitude 6.4 aftershock. The extent of death, injury and destruction — especially in Myanmar, which is embroiled in a civil war and where information is tightly controlled at the best of times —
Taiwan was ranked the fourth-safest country in the world with a score of 82.9, trailing only Andorra, the United Arab Emirates and Qatar in Numbeo’s Safety Index by Country report. Taiwan’s score improved by 0.1 points compared with last year’s mid-year report, which had Taiwan fourth with a score of 82.8. However, both scores were lower than in last year’s first review, when Taiwan scored 83.3, and are a long way from when Taiwan was named the second-safest country in the world in 2021, scoring 84.8. Taiwan ranked higher than Singapore in ninth with a score of 77.4 and Japan in 10th with
SECURITY RISK: If there is a conflict between China and Taiwan, ‘there would likely be significant consequences to global economic and security interests,’ it said China remains the top military and cyber threat to the US and continues to make progress on capabilities to seize Taiwan, a report by US intelligence agencies said on Tuesday. The report provides an overview of the “collective insights” of top US intelligence agencies about the security threats to the US posed by foreign nations and criminal organizations. In its Annual Threat Assessment, the agencies divided threats facing the US into two broad categories, “nonstate transnational criminals and terrorists” and “major state actors,” with China, Russia, Iran and North Korea named. Of those countries, “China presents the most comprehensive and robust military threat