Saturday, 26 May 2007

Malware-based phish attack seen in the wild

Source: The Register
A reader of The Register wrote in to report a somewhat inscrutable phishing technique. Apparently his computer has been infected with malware capable of recognising a number of online banking sites and other popular phishing targets, and inserting a phishing page into the usual stream of activity. This bypasses all the usual checks for known phishing sites, since the browser isn't actually being directed away from the legitimate site: it's just not displaying data from the legitimate site. The victim's copy of IE was affected by this hack, but Firefox was not.

No comments: