Recent Posts

Recent Blog Posts

The PhishLabs Blog

ID theft protection not worth it? The Week in Cybercrime - March 14, 2014

Posted by Stacy Shelley on Mar 17, '14

Each week, the PhishLabs team posts The Week in Cybercrime (TWIC) to recap noteworthy cybercrime articles and reports (open source).

That consumer ID theft protection plan you're paying for? Yeah, it's not worth the cost when it comes to detecting existing account fraud (which is far more common than fraudsters creating new accounts in your name). And between federal law and zero liability policies at card issuers and payment processors, your bank or card brand is on the hook for the fraud losses in most common scenarios. Your likely exposure is less than the cost you would pay for the ID theft protection plan. 

In the second part of his series on pharming, Chris Bowen details how hosts files can be modified to carry out pharming attacks and provides pharming protection recommendations for this method of attack.

This isn't the first time the Pingback functionality of WordPress has been abused to launch DDoS attacks, but it's the largest publicy reported in terms of the volume of sites involved. If you are running WordPress, check your site on Securi's DDoS detection tool to determine if it's being used in an attack.    

The GnuTLS library has a bug that allows attackers to decrypt SSL and TLS communications. The downstream impact of the vulnerability will be significant considering that many of the most popular flavors of Linux use GnuTLS, as well as hundreds of applications. 

"Ignore" isn't the best term, but it does look like they incorrectly analyzed alerts coming from some of their security tools -- which allowed the attack to fly under the radar. The simple truth is that an organization the size of Target can't respond to every alert in their environment. Security tools are noisy, even when well-tuned, and there was likely some threshold that suspicious activity had to pass before it could be assessed as a real threat. 

 

Topics: The Week in Cybercrime

What's this all about?

The PhishLabs Blog is where we share our insights and thoughts on cybercrime and online fraud.

Recent Posts

Posts by Topic

see all