Phisher uses ... Malaysian government portal for fraud
A conspiracy to deceive sophisticated phishing has been discovered, in which the conspirators have used Malaysian Government computers and a reputable medical company.
Bill Carton is an engineer working in San Diego but has worked for 10 years as an expert in anti-spam. He happened to find the plot when he received an email claiming to be sent from eBay's PayPal service last Saturday.
Its content is the same as previous phishing emails: " We know your account information needs to be updated. If you can pause your work, you are doing 5-10 minutes and updating your information. You will not have to fix any future problems with our service . "
Source: BBC However, the unusual point in this scam is the link within the email that leads to a fake PayPal website that is deposited by the Malaysian government's server at the gov.my domain. "It's fine if you use a domain name, who dares to doubt? ", Carton commented.
Further investigation of the email, Carton noticed " outside the government server, the scammer also used another reliable source to send the fake email. The mail server was controlled to spread. Spam and trace traces of spammer are not common home computers, but Rxdocuments.com, they have installed a system of personal privacy protection software, but are attacked by hackers. and take advantage of to distribute spam ".
Rxdocuments.com is a website specializing in providing "dictation" services for pharmacists. Neither the site nor the Malaysian government have commented on the discovery of Carton.
According to expert Paul Laudanski of Computer Corps, this is not the first time the gov.my website has been used by phishers. This address has been used at least four times since April this year to send fake email Citibank, eBay and Chase.
Phishing scams are becoming more sophisticated when criminals find it possible to earn real fresh money from online fraud. Research firm Gartner estimates Americans have lost up to $ 2.8 billion for phishing in 2006.
" We have never witnessed such a strong and abusive phishing activity ," said Dave Jevans, president of Anti-Phishing Working Group. " In the last two months, the amount of spam has increased dramatically and the number of frauds has also escalated ."
Jevans also agreed that the latest PayPal impersonation was unusual. " It's interesting that the two organizations that you think are strictly confidential are taken down by hackers and used as weapons ."
Trong Cam
- Phisher takes advantage of IM accounts for fraud
- EU declared war on online fraud
- Russia launches Earth image portal
- Malaysian teachers manipulate voice control
- KGB also becomes a victim of online fraud
- Progress in informatics to help fight tax fraud
- Malaysia: Licensing 4G WiMax for 4 service providers
- Japan develops software to prevent food fraud
- Malaysian tapirs on Japanese soil
- Google objected to accusations of fraud in clicks
- Search for legendary monsters in the Malaysian rainforest
- ESport portal for Vietnamese gamers