26 July 2016
Find out more

Man-in-the-middle phishing kits circulating freely on the Web

10 August 2007  |  13049 views  |  0 ID Fraud

Security vendor RSA is reporting an increase in the amount of free 'man-in-the-middle' phishing kits - designed to subvert bank two-factor authentication controls - circulating in the fraudster underground.

In its monthly online fraud report, the RSA FraudAction Intelligence team has highlighted a rise in the number of hacker repositories dedicated to providing free man-in-the-middle kits. The kits themselves target more than ten of the world's leading financial institutions, says the vendor.

The free kits are usually primed to send stolen user credentials to both the instigator of the fraud and the creator of the software.

The vendor first encountered demo kits for sale on the Web in January this year. It forecasts a sharp increase in man-in-the-middle attacks as the software becomes more widely available over the next twelve months.

American consumers lost more than $7 billion over the last two years to viruses, spyware, and phishing scams, according to a Consumer Reports survey released earlier this week.

Comments: (0)

Comment on this story (membership required)

Finextra news in your inbox

For Finextra's free daily newsletter, breaking news flashes and weekly jobs board: sign up now

Related stories

US consumers lose billions to online scams

US consumers lose billions to online scams

07 August 2007  |  8735 views  |  0 comments
Man-in-the-middle phishing kits for sale on the Web

Man-in-the-middle phishing kits for sale on the Web

11 January 2007  |  13013 views  |  0 comments
Phishing figures worry FSA

Phishing figures worry FSA

14 December 2006  |  12410 views  |  0 comments
Microsoft cracks down on phishers

Microsoft cracks down on phishers

23 November 2006  |  6064 views  |  0 comments
Phishers angling for fatter fish

Phishers angling for fatter fish

10 November 2006  |  7672 views  |  0 comments
FFIEC guidance deadline will lead to surge in phishing, warns US regulator

FFIEC guidance deadline will lead to surge in phishing, warns US regulator

11 September 2006  |  7070 views  |  0 comments
Man-in-the-middle attacks Citi authentication system

Man-in-the-middle attacks Citi authentication system

12 July 2006  |  18754 views  |  0 comments

Related company news

 
Visit VocaLink.comVisit www.abe-eba.euVisit capgemini.com

Top topics

Most viewed Most shared
satelliteContactless Bitcoin startup Plutus Tap &am...
9299 views comments | 9 tweets | 4 linkedin
MasterCard agrees £700m VocaLink acquisitionMasterCard agrees £700m VocaLink acqu...
9235 views 14 comments | 32 tweets | 38 linkedin
Apps crush internet for UK banking loginsApps crush internet for UK banking logins
7764 views comments | 18 tweets | 25 linkedin
hands typing furiouslyHow machine learning can cut costs on tran...
5905 views 0 | 9 tweets | 2 linkedin
Thomson Reuters and Imperial College form fintech and regtech research partnershipThomson Reuters and Imperial College form...
5900 views comments | 29 tweets | 16 linkedin

Featured job


Brussels (Belgium) or Paris (France)

Find your next job