Security experts are warning of a new Internet scam that preys on Visa credit card holders, using e-mail and a specially designed Web site to harvest customer account numbers and personal identification numbers.
The ruse is the latest example of so-called "phisher" scams and comes as one e-mail security company reports incidents of such scams, which use decoy Web pages and spam e-mail messages to trick unsuspecting users into divulging sensitive information, are up 400 percent this holiday season.
Visa International Inc. did not respond to requests for comment.
The new phisher came to light after Internet users began receiving e-mail messages purportedly coming from "Visa International Service." The messages claimed that Visa had implemented a new "security system to help you to avoid possible fraud actions" and asked users to click a link to "reactivate your account," according to messages posted in Full-Disclosure, an online discussion list frequented by computer security experts.
The message contained a Web link that appeared to direct users to www.visa.com, Visa International's official Web site.
However, security experts who looked at the HTML (Hypertext Markup Language) message's source code discovered that the link really directed users to a Web page at an Internet address that does not belong to Visa, according to messages posted on Full-Disclosure.
The Web site has since been taken down.
E-mail security company Tumbleweed Communications Corp. said on Tuesday that reports of e-mail fraud and phishing scams are up 400 percent this holiday period.
Tumbleweed based its findings on reports of scam attacks submitted to anti-phishing.org, a Web site run by the Anti-Phishing Working Group, an industry group that Tumbleweed helped found, the company said in a statement.
Tumbleweed identified more than 90 unique e-mail fraud and phishing attacks in the last 60 days, including scams like the Visa attack which spoof the origin of e-mail messages and feature links to fraudulent Web pages that collect user information.
Tumbleweed and the Anti-Phishing Working Group estimate that more than 60 million e-mail scam messages have been sent in the last two weeks and seek to take advantage of confusion and increased online transactions during the holiday season.
On average, 5 percent of recipients responded to the scam e-mail, Tumbleweed said.
This whitepaper explains the terminology and concepts behind Data Replication technologies and establishes some sizing rules through worked examples. Learn the new paradigm in disaster tolerance—protect data anywhere.
Download now »
Server virtualization is a popular option for dealing with mounting datacenter costs. Another equally promising approach is the use of an Application Delivery Controller. Citrix NetScaler provides a low-cost way for organizations to reduce their server count and accrue cost savings from a reduction in space, cooling, power and personnel.
Download now »
The emergence of WLANs has created a new breed of security threats to enterprise networks.
Included in HP ProCurve WLAN solutions is security technology that alleviates threats from WLANs through:
* Monitoring wireless activity inside and out of the enterprise
* Classifying WLAN transmissions into harmful and harmless
* Preventing transmissions that pose a security threat to the enterprise network
* Locating participating devices for physical remediation
Effectively address data protection challenges, implementing solutions that help store and protect business–critical data while cutting costs and improving efficiency and reliability.
Download now »
Sign up to receive Applications Resource Alerts
Like any valuable resource, IT is a terrible thing to waste. But by applying the same lean techniques that have been used to streamline manufacturing processes, IT departments can reduce costs, improve performance and better manage resources.
Download now! »
Stephen Elliot, vice president of strategy for CA's Infrastructure Management and Data Center Automation business unit, explains why difficult economic times drive the need for simplified management capabilities and advanced automation tools.
Listen now! »
According to a recent study CA conducted with 300 CIOs and top IT executives, 64 percent of respondents say they've already invested in virtualization, and the other 36 percent reported that they plan to invest in virtualization.
Download now! »
In this video learn about process automation in a virtualized world. How CA and VMware are enabling enterprise datacenter automation.
View now! »
Recommend This
