Thursday, May 26, 2005

Phishers get personal

Joris Evers writes in C|Net News:

Spammers and phishers are learning more about potential victims to better hone their attacks.

Web sites that use e-mail addresses as identifiers for password reminders and registration are open to exploitation by scammers to generate detailed profiles of people, security company Blue Security said in
a research report this week.

In the technique described in the report, spammers and phishers automatically run thousands of e-mail addresses through Web site registration and password-reminder tools. Because many online businesses return a specific message when an e-mail address is registered with the site, attackers can find out whether that address represents a valid customer.


0 Comments:

Post a Comment

<< Home