phishing
214 ResultsDictionary
phishing
Pronounced "fishing," it is a scam to steal valuable information such as credit card and social security numbers, user IDs and passwords. Also known as "brand spoofing," an official-looking...
Dictionary
Definition: phishing
Pronounced "fishing," it is a scam to steal valuable information such as credit card and social security numbers, user IDs and passwords. Also known as "brand spoofing," an official-looking e-mail is sent to potential victims pretending to be from their bank or retail establishment. E-mails can be sent to people on selected lists or any list, expecting some percentage of recipients will actually have an account with the organization.
E-Mail Is the "Bait"
The e-mail states that due to internal accounting errors or some other pretext, certain information must be updated to continue your service. A link in the message directs the user to a Web page that asks for financial information. The page looks genuine, because it is easy to fake a valid Web site. Any HTML page on the Web can be copied and modified to suit the phishing scheme. Rather than go to a Web page, another option is to ask the user to call an 800 number and speak with a live person, who makes the scam seem even more genuine.
Anyone Can Phish
A "phishing kit" is a set of software tools from phishing developers that help the novice phisher copy a target Web site and make mass mailings. It may even include lists of e-mail addresses (how thoughtful of people to create these kits!). In the meantime, if you suspect a phishing scheme, you can report it to the Anti-Phishing Working Group at www.antiphishing.org. See pharming, vishing, smishing and twishing.
The "Spear" Phishing Variant
Spear phishing is more targeted and personal. The e-mail supposedly comes from someone in the organization everyone knows such as the head of human resources. It could also come from someone not known by name, but with a title of authority such as a LAN administrator. Once one employee falls for the scheme and divulges sensitive information, it can be used to gain access to more of the company's resources.
THIS DEFINITION IS FOR PERSONAL USE ONLY
All other reproduction is strictly prohibited without permission from the publisher.
© 1981-2010 The Computer Language Company Inc. All rights reserved.
Sponsored White Papers, Webcasts & Resources
-
Business Execution: Executive Buyer's Guide
There's a big difference between strategy and execution. Take a look at this white paper to learn how you can take your business strategies into the real world with the help of assets you already...
-
Phishers hooking Facebook, Twitter, Google, Yahoo passwords
Phishers are actively trolling the Internet trying to trick users into giving up their OpenID-based log-in credentials to popular social networking sites.
-
Facebook phishing attack targets Syrian activists
Researchers from the EFF (Electronic Frontier Foundation) have spotted an ongoing Facebook phishing attack, spreading across Syrian pro-revolution forums on Facebook.
-
New wave of phishing attacks serves malware to PCs and Macs
Malware distributors have launched a new wave of attacks aimed at taking over unpatched PCs and Macs. They look like routine messages from a bank or a social network, but instead of phishing for...
-
63% of website owners don't know how they were hacked
It's bad enough when your website is hacked, but it's even worse when you don't know how it happened. It turns out only some website owners have an idea how their sites were compromised.
-
Facebook phishing scam: hey, do you remember this photo?
A new scam on Facebook is trying to steal your account credentials. Never re-enter your e-mail address and password without first checking that you are indeed on facebook.com.
-
-
McAfee database security updates about threats inside and out
The McAfee database security solution has been designed to protect databases from external, internal and intra-database threats.
-
Yahoo's board of directors plays musical chairs: 4 out, 2 in
Yahoo's reshuffling continues as four board members -- including the chairman -- announce their departures as two more are elected in.
-
10 things Gen Y do online.. and shouldn't.
Ten things that young people do online.. and how they really should know better.
-
Fighting phishing: Facebook friends Google, Microsoft
Facebook has teamed up with Google, Microsoft, and 11 other companies to fight phishing. Over the last 18 months, they have been developing standards to reduce deceptive e-mails.
-
Email titans Google, Microsoft, Yahoo aim to battle phishing
A working group is pitching a system that will allow providers to authenticate emails better.
-
Zappos breach highlights fragile password, personal data security
Zappos.com resets 24+ million user passwords after hackers attack its servers. The incident reveals once again the frailty of passwords, especially when used across sites, and that the long-term...
-
NYT, Twitter, Dell, Skype - a litany of holiday failure
How many things can go awry in 24 hours. Let's count the ways.
-
Why do we still fall for phishing scams?
Students are a prime target for online scams, from phishing to malicious sites. But why does the Generation Y, who lived through these scams for years, still fall for them?
-
French Facebook phishing scam: 5,000 accounts compromised
A phishing scam in France has tricked thousands of users to log in to a fake Facebook website. If you think you may have been affected, make sure to change your password.
-
Beware the Delta Air Lines phishing attack
A phishing attack that mimics Delta Air Lines has enough real links to lull you into thinking a bogus email is real.
-
Deconstructing a nasty Chinese World of Warcraft phishing scheme
I've seen a lot of phishing attempts and this smelled just like phish.
-
Microsoft calls out Firefox and Chrome for security weaknesses
In a move that's sure to raise hackles in Silicon Valley, Microsoft today debuted a new web site designed to raise awareness of security issues in web browsers. IE9 gets a perfect score; Chrome...
-
Facebook denies privacy accusations, shows 'big brother paternalism'
Facebook denies the latest privacy accusations and acknowledges tracking information to protect users.
-
Bank of Melbourne Twitter account hacked, spreading phishing links
The Twitter account of Bank of Melbourne was compromised last Wednesday, and was used to spread phishing links as direct messages to the account followers.
-
Facebook, Google, CIA, MI6 targeted in Dutch government certificate hack
Over 500 stolen SSL certificates from a Dutch certificate authority also appear to have stung Facebook, Google and Windows Update, as well as MI6 and CIA websites.
The best of ZDNet, delivered
ZDNet Newsletters
Get the best of ZDNet delivered straight to your inbox
Vendor Showcase
Facebook Activity
