One in three phishing attacks is to steal d ...

One in three phishing attacks is to steal d …

April 4, 2014

inf_Financial_phishing_targets_3In 2013, 31.45% of phishing attacks used names of major banks, online stores and electronic payment systems, an increase of 8.5 percent compared to the previous year. In Latin America, which represents 3.56% of phishing attacks worldwide, 36% of these are aimed at the theft of financial information. According to data collected from the Kaspersky Lab study ‘Financial Cyber ​​Threats 2013’, cybercriminals are trying harder than ever to acquire confidential user information and steal money from bank accounts by creating fake websites that mimic official pages of organizations financial

Phishing is a fraudulent scheme used by cybercriminals to obtain confidential user data with the help of fake web pages that mimic resources on the Internet. Unlike malicious software created for certain operating systems, phishing attacks threaten all devices that can access web pages. That is why they are so popular with scammers – in 2013 alone, Kaspersky Lab products protected some 39.6 million users from this cyber threat.

Phishing sites aimed at collecting user financial data mainly use the brand names of the most popular online stores, electronic payment systems, and online banking systems. In 2013, the most attractive targets were banks, which were used in 70.6% of all financial phishing. This is a strong increase compared to 2012 when bank phishing accounted for only 52%. Overall, fasos banking sites were involved in more than double (22.2%) of phishing attacks in 2013.

Targets of Financial Phishing in 2013

In 2013, Kaspersky Lab’s anti-phishing heuristic technologies blocked a total of 330 million attacks, an increase of 22.2% compared to the previous year Scammers use the names of major companies with a vast customer database looking for a big criminal gain. For example, around 60% of all phishing attacks using fake banking pages exploit the names of only 25 organizations. Phishers’ “favorite” electronic payment systems are more clearly defined: 88.3% of phishing attacks in this category involved one of four international brands: PayPal, American Express, Master Card and Visa.

For several years in a row, Amazon.com has been the most popular brand for phishing attacks that exploit the names of online stores. During the reporting period his name was used in 61% of phishing attacks related to online commerce. The Top 3 also includes Apple and eBay, but both were far from catching up with Amazon.

“Phishing attacks are popular because they are easy to implement and very effective. Even for advanced Internet users it is not easy to distinguish a well-designed fraudulent site from a legitimate page, which makes it even more important to install a specialized protection solution. Furthermore, phishing damages the reputation of organizations that see their brands exploited by phishing attacks, ”said Sergey Lozhkin, Senior Security Researcher for Kaspersky Lab.

Phishing creators not only mimic the websites of financial institutions – they also frequently attack through social networking sites. In 2013, the number of attacks using fake Facebook pages and other social networking sites grew 6.8 percent and accounted for 35.4% of the total.

[+] Videos de nuestro canal de YouTube