Posted by:
admin
17 years, 1 month ago
There is a great article with superb detail over on the Gonzo Banker site about how a bank responded to a phishing attack:Interesting how the attackers use a blended attack, with two fake sites and a DNS attack at a third server. Also, it seems like it was targeted attack, the so-called "spear phishing":
"CSIRT staff noticed in the reported traffic that the email addresses were mostly from a local university. Those not from the university were typically from other colleges or universities across the United States. With this information, it appears that an email list was either purchased or stolen from a student, staff or faculty member of the local university. It was this list that formed the basis of the attack."
Share on Twitter Share on Facebook