Monday, January 23, 2006
Websense reported today that Yahoo users are being targeted in the latest phishing scam. Customers are being sent instant messages instructing them to go to the website (pictured above) and give up their Yahoo ID and password.
Anyone doing this will receive error message and their information is transmitted to the criminals behind this.
In another announcement: Websense Security Labs Launches Global Phishing and Crimeware Threat Map and Security Blog. The information on the map will be updated within 15 minutes of discovery. Here is more information on this from Websense:
"In conjunction with the availability of the Threat Map on www.websensesecuritylabs.com the map will also be viewable through the Anti-phishing Working Group (APWG) at http://www.antiphishing.org/crimeware.html."
"The APWG is the global pan-industrial and law enforcement association focused on eliminating the fraud and identity theft that result from phishing, pharming and email spoofing of all types.
Starting in June 2005, Websense Security Labs, in conjunction with the APWG, started Project Crimeware. The APWG defines crimeware as a genus of technology distinguished from adware, spyware and malware by the fact that it is, by design, developed for the single purpose of facilitating a financial or business crime."
To read the alert on Yahoo from Websense:
Yahoo! Account Compromise through Yahoo! Messenger
In case you, or someone you care about would like to know how to avoid being phished. The APWG has an excellent document on their site:
How to Avoid Phishing Scams
Websense not only develops products for sale, but endeavors to protect all of us through communication. In my opinion, their actions model what "corporate responsibility" is all about. In the age of massive information theft via the internet, we can be thankful for their efforts and if you are in the market for security products, I highly recommend them because of this.