iTWire - Australia, NZ amongst worst for online brand attacks

IT&T JOBS|Discussion forum|Technology Events|IT Education|

Today on iTWire IT News Telecommunications People Our Blogs Tech Lifestyle Releases Science Sustainability MyProfile Whitepapers

Daily ICT Newsletter FREE TRIAL

Follow the Australian Telecommunications scene NEWSLETTER- FREE TRIAL

Technology news and Jobs

Australia, NZ amongst worst for online brand attacks

Australia, NZ amongst worst for online brand attacks

E-mail

by Peter Dinham
Wednesday, 28 October 2009
Australia continues to rank as one of the top ten countries worldwide to suffer online brand attacks, and while Colombia and France have dropped off the chart completely, New Zealand and Brazil have entered the list for the first time, according to a new report on worldwide fraud released today. Featured Whitepaper 5 Best Practices for Smartphone Support According to RSA’s online fraud report for October, despite the rise in the total number of brand attacks launched in September, and an increase in the number of brands targeted last month, phishers generally continue to attack brands in the same countries, namely Australia, the US, the UK, Canada, Italy, Spain and South Africa. Also reported by RSA was the fact that financial institutions in Australia, Asia and Latin America are increasingly deploying two-factor authentication for their online banking users and, as a result, have experienced an increasing number of ‘man-in-the-browser’ (MITB) attacks. RSA reports that it has witnessed a surge in the number of MITB attacks, “especially in geographies where two-factor authentication is densely deployed --- such as the European consumer banking and US corporate banking markets.” The security firm says a man-in-the-browser attack is designed to intercept and manipulate data as it passes over a secure communication between a user and an online application, and that a Trojan embeds in a user’s browser application and can be programmed to trigger when a user accesses specific online sites, such as an online banking site. According to RSA, a number of Trojan families are currently being used by fraudsters to conduct MITB attacks including Zeus, Adrenaline, Sinowal, and Silent Banker, and it says some MITB Trojans are so advanced that they have “streamlined the process for committing fraud, programmed with functionality to fully automate the process from infection to cashout.” RSA warns that what makes MITB attacks difficult to detect from the bank’s server side is that any activity performed “seems as though it is originating from the legitimate user’s web browser.” “Characteristics such as the Windows language, user agent string, and the IP address will appear the same as the user’s real data. This creates a challenge in distinguishing between genuine and malicious transactions.” RSA also says that man-in-the-browser as an attack vector has experienced exponential growth in the rate of infection in the last year, and it has witnessed Trojan infections increase tenfold in the last twelve months – findings which it says that are supported by other industry observations and reports. “This growth is driven in part by the number of ‘drive by download’ infections where vulnerabilities on legitimate websites are exploited by botnets and infection kits to place an iFrame in the breached site,” RSA says. Tags See All Tags Australia Authentication Banking Brands Browsers Cyber Security Cyber attacks Cyber fraud Cyberthreats Fraud MITB New Zealand Online Online banking Peter Dinham RSA Security Powered By Joomla Tags Please enable JavaScript in your browser to post your comment!

< Next story in category		Previous story in the category >

Sponsored Releases

Open Text Deepens Integration with SAP® Solutions

As Christmas Nears, AVG (AU/NZ) Advises Shoppers How to Stay Safe Online

Progress Software Successfully Enables SaaS Deployment in the Cloud for Fifth Year

British Airways selects Progress Software SOA Solutions to upgrade the travel experience

...Promote your press-releases here

Latest jobs

User Experience Architect (C4)
Consulting Services Branch Manager
Process Analyst X 4 (M4)
Content Co-Ordinator (M3)
Senior .Net Developer (M3)
Business Analyst (M17)
Test Lead
Senior Business Analyst
Business Analyst - Financial Markets, Ops focus
Technical Business Analyst - BI & DW - Contract

	Visitors last 30 days	694,279
	Subscribers	15,210

#1 independent technology news advertise here

- Advertisement -

Featured Whitepapers

	5 Best Practices for Smartphone Support Worldwide shipments of smartphones reached a high of nearly 40 million units in the third quarter of 2008, helping to grow the category by 28% from the same quarter last year.
	Legacy Tools: Not For Today’s Helpdesk Why applications like RDP, VPNs and VNC may be costing you time, money and end-user satisfaction.

Today on iTWire

Follow iTWire on Twitter

About iTWire

iTWire is all about technology news, information, jobs and community for the IT and telecommunications industry professional. Subscribe to our free ICT daily newsletter

website free tracking