Skip to main content

The WiKID Blog

Viewing posts tagged Phishing and Fraud

too-bad-he-is-not-dr-obrien

From Neatorama:

Graham O’Brien thought he was just unlucky when he couldn’t access his bank account by phone. But it turned out that the call center staff thought he was a woman trying to defraud the bank because of his squeaky voice.
You would think that they could tag his records with some indication that he's got a squeaky voice.

two-factor-authentication-for-gamers

Now that you can sell virtual items for real cash, attackers are targeting online gamers. According to Information Week, there is now a trojan targeting World of Warcracft passwords, PWS.Win32.WOW.x .

"Win32.WOW is a clear indication that malware writers are targeting anything that involves money," said MicroWorld chief executive Govind Rammurthy in a statement. "Bucks may be smaller compared to a Trojan that steals bank accounts or credit card numbers...[but] cyber criminals are not complaining as long as the target is soft and numbers are high."

two-factor-phish-against-citibank-demonstrates-the

Lance James at Secure Science has screen shots of the phish attack against CitiBank's business site that uses a hardware token one-time password system. You can see them on WaPo's Security Fix Blog.

unofficial-review-of-mutual-authentication-schemes

For some reason, I really enjoyed this impromptu review of image-based "multi-factor authentication". These image-based site authentication tools are sadly mislabeled as two-factor authentication, which is a personal cocktail party tragedy for me:

validating-online-transactions-with-two-factor

There has been much discussion recently about session hijacking attacks. Briefly, a trojan sits on your machine and when you go to an online banking URL, the trojan kicks in and makes a fraudulent transaction inside your SSL-encrypted sesssion. Pretty strong strong stuff, seemingly.

Recent Posts

Archive

2024
2022
2021
2019
2018
2017
2016
2015
2014
2013
2012
2011
2010
2009
2008

Categories

Tags

Authors

Feeds

RSS / Atom