Phishers Exploit Hurricane Gustav, Hurricane Hanna - The Channel Wire - IT Channel News And Views by CRN and VARBusiness

News

Reviews

NEW ON CHANNELWEB

Coming Up: Women of the Channel Winter Workshop

Coming Up: Tech Innovator Awards

Annual Report Cards

State of Tech: Security

Fast Growth 100

Tech Books Online

Subscribe to CRN

FEATURED VIDEO

Sponsored By:

SLIDE SHOWS

Pass That PCI Audit: 20 Hot Compliance Products

As if they needed more stress, organizations are facing evolving and increasingly stringent compliance regulations from the Payment Card Industry, as well as Sarbanes-Oxley, HIPAA and others. Here are a few security compliance products that can make the audit process less excruciating.

D&H: 10 Fresh Products For SMBs

Here are 10 of the distributor's hottest new offerings winning over solution providers.

Hot New Handsets For The Holidays

New smartphones from Sony, Motorola and the first-ever Twitter-only mobile device -- the TwitterPeek -- headline a busy week for handset makers as the holiday shopping season heats up.

INSIDE CHANNELWEB

Emerging Vendors Blog

Emerging Vendors Report

Fast Growth 100

Demand Generation Services

Partner Programs Guide

Vendor Content Community

Vendor Stimulus Directory

Women of the Channel

White Paper Library

BLOGS

The Channel Wire

September 02, 2008

Phishers Exploit Hurricane Gustav, Hurricane Hanna

Well, they're at it again. To celebrate the long Labor Day weekend, cyber criminals around the world have found a new high profile media event to exploit and more unsuspecting users to dupe. This time, the media event du jour is Hurricane Gustav.

Cyber scammers all over the globe are exploiting the news of the Louisiana hurricane by running spamming and phishing sites with domains that appear to be from legitimate charities asking for donations for disaster victims.

Security researchers first became aware of initial Gustav-related domain names this past Tuesday. Meanwhile, Hurricane Hanna, which developed near the Bahamas on Monday, is also expected to come with a barrage of fraudulent charity and news Websites exploiting the disaster and generous sympathizers.

In reality of course, many of these sites are linked to malicious pages hosting malware and botnets or sponsored by organized crime. Users visit the malicious sites and enter credit card information, thinking that they're donating to a respectable charity. In actuality, they are probably sending their sensitive financial data right into the waiting hands of cybercriminals.

Marcus Sachs, director of the SANS Internet Storm Center noted in a SANS Institute blog post that many of the registered domain names related to hurricanes Gustav and Hanna are either in "for sale" status, or associated with IP addresses known to host spyware, Trojans and other malicious software.

Sachs also found that in anticipation of upcoming natural disasters, one entrepreneurial soul has even registered the domain names of future hurricanes for the next several years, which can be found on the NOAA Web site. After all, why wait for disaster to strike when you can strike it first?

However, in the near future, phishers will have plenty of material on which to base their scams. A Reuters report said that Atlantic hurricane activity will continue to be well above average in September with a total of four expected hurricanes, two of which are anticipated to be major storms with winds in excess of 111 mph.

Security experts encourage users not to open links or visit Web pages of unknown charities capitalizing on the disaster. In addition, users should also apply content filtering services to protect themselves against possible attack.

Posted by Stefanie Hoffman at 7:49 PM

>>More from "The Channel Wire"

Share: Digg Del.icio.us Facebook LinkedIn Twitter
More Security | Email this blog | Print this blog | Reprints

Main >>

Contact

Email Us

Subscribe To This Feed

More Newsfeed Information