Saturday, 1 December 2007

Phishing tactics tweak: shorter domain names

Source: Frequency X

Frequency X reports that phishing gangs have recently made a shift towards shorter domain names in their phishy URLs, down from 30-37 characters to an average of 17. So whereas something like "session-12345678.onlinebanking.login.domain.info" used to be common, they are now seeing names like "banking.login.mio23.domain.net". The tactical shift is presumably an evasive manoeuvre on the phishers' part; it remains to be seen whether they stick with this strategy.

No comments: