01 April 2015

Crooks dupe fellow cons into doing their phishing for them

23 July 2010  |  6761 views  |  0 ID Fraud

A pair of cybercrooks have posted a phishing kit on hacker forums that lets them steal the data gleaned by those who download and use it, says security outfit Imperva.

Imperva says the phishing kit helps crooks set up fake sites purporting to belong to organisations such as banks to dupe personal and financial data from victims.

However, unknown to these hackers, the creators of the kit use a built in back door to harvest all the credentials. While the proxy crooks may find some success before their phishing sites are closed down, the masterminds gets everything without needing to conduct an open campaign.

The cloud-based approach of the kit - developed in Algeria with Arabic tutorials but itself in English - makes it far harder to shut down than normal phishing scams, says Imperva.

In traditional schemes when you take down a server you affect not only the Web page but also the back end data collection capability. In the cloud version, data collection is hosted separately from the sites which means hackers only need to repost the front end in a new location to be back in business.
KeywordsPHISHING

Comments: (0)

Comment on this story (membership required)
Log in to receive notifications when someone posts a comment

Finextra news in your inbox

For Finextra's free daily newsletter, breaking news flashes and weekly jobs board, sign up now.

Related blogs

Create a blog about this story (membership required)

Related stories

09 March, 2010
04 February, 2010
02 December, 2009
08 October, 2009
26 August, 2009
29 June, 2009
20 February, 2009
Your browser is unable to support Flash files.

Top topics

Most viewed Most shared
Europe sets the pace as fintech investment...
6451 views comments | 29 tweets | 20 linkedin
UK online banking fraud losses soar 48%
5994 views comments | 16 tweets | 19 linkedin
Future Money Focus: Mariano Belinky, Santa...
5685 views comments | 12 tweets | 12 linkedin
Google preps Gmail bill payment feature
5204 views comments | 15 tweets | 12 linkedin
Barclays and PayPal join Government ID acc...
5064 views comments | 11 tweets | 11 linkedin

Featured job

to 90k base, double OTE, benefits
London, UK

Find your next job