BBC News announced that more passwords to email accounts were posted: Yahoo, Gmail, AOL, Comcast, and Earthlink users appear among those impacted. Again, security experts are urging those with accounts to change their login details. These are extra steps everyone should take at least once a year, or during situations where an account may be compromised:BBC News announced that more passwords to email accounts were posted: Yahoo, Gmail,... more
The head of the US Federal Bureau of Investigation has stopped banking online after nearly falling for a phishing attempt. FBI Director Robert Mueller said he recently came 'just a few clicks away from falling into a classic Internet phishing scam' after receiving an e-mail that appeared to be from his bankThe head of the US Federal Bureau of Investigation has stopped banking online after... more
Safety online is a controversial issue, one that is debated to death with little results that the average person can use without an advanced IT qualification. Here are my four simple rules for improving internet safety:Safety online is a controversial issue, one that is debated to death with little... more
Currently, people rely on obscurity to keep their data safe. But with progressively more intelligent search engines available that can churn through vast amounts of data and make sense of it – even your email – security is something that needs to be addressed.Currently, people rely on obscurity to keep their data safe. But with progressively... more
Spoiler alert: There isn’t an effective identity theft protection product. Typically, a company claiming to be an identity theft protection company will provide one or all of these services; access to credit reports, credit monitoring, and database monitoring. Unfortunately, these services cause security problems themselves.Spoiler alert: There isn’t an effective identity theft protection product.... more
Identity theft is “America’s fastest growing problem” according to a statement made by the Federal Bureau of Investigation. The Federal Trade Commission (FTC) estimates 10 million Americans are affected each year. Knowing how to protect yourself is vitally important to avoid becoming a victim. The following are arenas where thieves prey:Identity theft is “America’s fastest growing problem” according to a statement... more
Your email is as firmly established as an identity as a credit report- it contains details of your finances, address history, and birthday just as a credit report would. Your address book may reveal your mother’s maiden name, and a compromise of the account could easily reveal your tax information or social security number. A compromise of this account could be devastating.Your email is as firmly established as an identity as a credit report- it contains... more
New and nasty banking trojans are on the rise on the Internet and attacking online bank accounts.
The new trojan programs — which wait on your hard drive for an opportunity to crack your online banking account — are different from traditional "phishing" e-mail scams that try to trick you into typing your login information at fake bank websites.
They're invisible, can steal data multiple ways and require no action by the victim to be launched.
"Phishing doesn't work as well as it used to," says Patrik Runald, security specialist at F-Secure, the Internet security firm. "Banking trojans provide a very effective and direct means for the bad guys to get their hands on the money."
Banking trojans can be gotten by clicking on a viral link to a greeting card or video that arrives in e-mail spam. Or, they can be picked up by clicking to a Web page that's been corrupted by hackers.
F-Secure tallied 59,177 unique banking trojans circulating on the Internet in 2008, up from 15,969 in 2007. The escalation partly underscores how intensively criminal hackers churn out new variants to escape detection by antivirus programs.
Banking trojans "are more advanced and evolving faster than antivirus solutions," says Gunter Ollmann at IBM Internet Security Systems.
The American Bankers Association acknowledges the rise. Doug Johnson, vice president of risk management policy, notes that most U.S. banks try to make certain that online customers log in from their usual computer.
Losses caused from unauthorized transactions aren't known. Banks generally don't disclose them.
A typical banking trojan remains dormant until the customer logs on to a banking website. It then steals usernames and passwords by capturing keystrokes or copying the log-on page after the victim has filled it out.
So-called man-in-the-middle trojans go further. One type makes illicit cash transfers while the victim is legitimately logged on. Another can reproduce a copy of the Web page showing account balances — except with the balances altered to show the numbers the victim expects to see. This buys time for the thief to drain the account and hide his trail, Ollmann says.
Despite the trojans, Johnson of the bankers' association insists "online banking, on balance, is safe."
-------------------------------------------------
Is online banking safe?New and nasty banking trojans are on the rise on the Internet and attacking online... more
