Security Market Segment LS


JUser: :_load: Unable to load user with ID: 66
Monday, 13 July 2009 14:37

New technique used in ATO phishing attacks

Spammers have employed a new technique in their phishing attacks on the Australian Taxation Office website in an attempt to snatch tax refund details from users of the site doing their tax return online.

In the phishing scam, described by Symantec as technically ‘very nifty, the intended victims were asked to supply details and print a form which, when completed, was to be sent to the mailing address to process the tax refund.

According to Symantec in its latest phishing report, if someone completed the form and clicked on the "print" button, what actually happened was that the confidential information was sent to a server utilising the fraud domain. (iTWire readers were warned of this phishing ploy in June.)
Symantec says in the scam it observed the new technique being used by scammers at the close of the financial year, with most of the phishing attacks traced back to compromised Web servers hosted in Germany and Australia.

However, “fortunately the Australian Taxation Office took serious note of the phishing attacks and worked diligently to gain control over it,” Symantec says.

In its report, Symantec also says it observed that in June 62 percent of all attacks around the world were from unique phishing Web sites, which included more than 208 targeted known brands. In the Asia Pacific region, including Australia, Symantec observed an overall increase of 21 per cent in phishing attacks in comparison to May.

Worldwide, Symantec reports that the unique attacks increased by 27 percent from the previous month, with the increase likely to be a result of phishers evading the phishing mitigation tactics of several web hosting companies to their benefit, and partially attributed to an overall increase in the volume of phishing activity in June.


According to Symantec it also observed that 38 percent of phishing URLs in the month of June were generated using phishing toolkits, with the number of toolkit attacks increasing by nine percent, including a sudden increase in toolkit attacks during the last week of June primarily targeting the information services sectors.
The rise in toolkit attacks, says Symantec, was primarily the resurgence in phishers targeting a social networking site popular mainly in the United States, following hot on the heels of the recent phishing attacks in May targeting another popular social networking site, Facebook, “which was successfully curbed by the team at Facebook.”

Symantec says “this particular toolkit attack is most likely related to a specific Command & Control server being reactivated,” further adding that “these attacks play a significant part in populating and updating underground economy servers with stolen personal data, marketed in the maturing underground economy.”

According to Symantec, a total of 1,503 phishing sites were hosted in 92 countries, amounting to an increase of approximately 21 percent of IP attacks in June in comparison to the previous month.

The report reveals that the Greater China region accounted for approximately 19 percent of IP attacks in the month, the highest observed from the Asia Pacific region, as compared to the previous months.

Free Web-hosting services has been the easiest form of phishing in terms of cost and technical skill required to develop fake sites, says Symantec, with a total of 143 different Web hosting services serving as the home for 2,814 phishing sites in the month of June.
Symantec also observed that there was a significant increase in the number of free Web-hosting services utilised for developing phishing sites, after analysing more than 77 brands based upon the geo-location of their Web hosts as well as the number of unique URL’s utilised to lure victims to the phishing Web hosts.
In June, Symantec also found that phishing attacks in Italian, French and Chinese languages were higher, with French language attacks returning to the top position after a gap of a couple of months. The security firm also says it observed that phishing Web sites in Italian and French language remained higher for some popular financial brands. Italian and French language phishing sites, it says, were mainly from the financial sector, while Chinese language phishing sites were from the e-commerce sector.

Subscribe to ITWIRE UPDATE Newsletter here


The much awaited iTWire Shop is now open to our readers.

Visit the iTWire Shop, a leading destination for stylish accessories, gear & gadgets, lifestyle products and everyday portable office essentials, drones, zoom lenses for smartphones, software and online training.

PLUS Big Brands include: Apple, Lenovo, LG, Samsung, Sennheiser and many more.

Products available for any country.

We hope you enjoy and find value in the much anticipated iTWire Shop.



iTWire TV offers a unique value to the Tech Sector by providing a range of video interviews, news, views and reviews, and also provides the opportunity for vendors to promote your company and your marketing messages.

We work with you to develop the message and conduct the interview or product review in a safe and collaborative way. Unlike other Tech YouTube channels, we create a story around your message and post that on the homepage of ITWire, linking to your message.

In addition, your interview post message can be displayed in up to 7 different post displays on our the site to drive traffic and readers to your video content and downloads. This can be a significant Lead Generation opportunity for your business.

We also provide 3 videos in one recording/sitting if you require so that you have a series of videos to promote to your customers. Your sales team can add your emails to sales collateral and to the footer of their sales and marketing emails.

See the latest in Tech News, Views, Interviews, Reviews, Product Promos and Events. Plus funny videos from our readers and customers.



Share News tips for the iTWire Journalists? Your tip will be anonymous




Guest Opinion

Guest Reviews

Guest Research

Guest Research & Case Studies

Channel News