1-866-PLYNT-24
|
Universal Man-in-the-middle Phishing Toolkit found
A few months ago, Jose mentioned in Palisade that Man in the middle Phishing attacks are on the increase. Last week RSA Security announced that they have discovered a Universal Man-in-the-middle Phishing Toolkit being sold online. The toolkit makes it easy to deploy new phishing sites. More importantly, this is the first instance of a toolkit simplifying man-in-the-middle phishing attacks.
Man-in-the-middle phishes relay pages from the website to the user and the requests from the user to the server in real-time. They can subvert two-factor authentication schemes by inserting themselves transparently in the request-response path. If you have invested in two-factor tokens to beat phishing, this is a good time to rethink your strategy.
Educating your users, detecting phishing attacks early and taking down the phishing sites quickly are the cornerstones of the anti-phishing strategy we recommend.
Plynt provides penetration testing and code review services to clients worldwide. If you are interested, please contact us for a quote. We’ll get back to you within one working day.Add yours.closed for this post.
Monthly Archives
- September 2008
- August 2008
- July 2008
- May 2008
- April 2008
- March 2008
- January 2008
- December 2007
- November 2007
- April 2007
- March 2007
- February 2007
- January 2007
- August 2006
- July 2006
- June 2006
- May 2006
- April 2006
- March 2006
- February 2006
- November 2005
- October 2005
- September 2005
- August 2005
- July 2005
- June 2005
- May 2005
Syndication
You can read full entries of Palisade Blog using an RSS reader. Use this link —