Client Login
 Quick Contact
E-mail scam targets administrators
Category : General 05 Apr 2010 06:04 AM | Industry News
The email addresses could have been Googled from Websites that post contact information for executives, or perhaps simply by learning the company's email naming convention and the names of top executives, and then making some educated guesses."
A phishing attack typically involves sending individuals an e-mail request for information that appears to come from a legitimate company, such as a bank, retailer, or other e-commerce website (the “spoofed company”). Through the use of a false “from” address, copies of company logos, Web links, and graphics, these e-mails have the look and feel of a message that recipients might expect to receive from a company with whom they do business. Often the message makes reference to new security measures allegedly being undertaken by the spoofed company, and asks recipients to verify or reconfirm confidential personal information such as account numbers, Social Security Numbers, passwords, and other sensitive information. To provide a sense of urgency, the message may indicate that the recipient’s account will be suspended or cancelled if the information is not verified by a certain date.
The types of information used by the spoofed company in its day-to-day customer interaction may play a role in the success of a phishing attack. If the information sought by the phisher is the type of information that the spoofed company commonly requests from the customer (e.g., password, mother’s maiden name, Social Security Number, account number, etc.), then this may help to convince the customer that the request really came from the spoofed company, and thus help the perpetrator obtain the sought-after information from the customer.
According to MessageLabs, emails carrying executable code and targeting high-level execs, or even their PAs in some instances, are circulating in very small numbers. However it is the level of detail, rather than the pure numbers, that MessageLabs claims gives the greatest cause for concern.
TAGS : Scam, Phishing, Malware