• silicon.com
• Technology
• Security

By Munir Kotadia, 5 August 2004 08:10

NEWS Phishing attacks continue to escalate as the internet population grows and people become more relaxed using their credit cards online.

There were almost 1,500 unique phishing attacks in June, a monthly increase of 19 per cent, according to a report published by the Anti-Phishing Working Group (APWG) yesterday.

Most phishing attacks are emails pretending to come from banks or financial institutions. They usually ask the recipient to "confirm" their personal details after clicking on a hyperlink. The link directs the victim to a fake or doctored website that is often indistinguishable from the original and is designed to collect information that can be used for fraud and identity theft.

Jack Clark, technology consultant at antivirus firm McAfee, said the number of phishing attacks is expected to keep growing because more people are using the internet and the phishers have started making money from the scam.

"New people join the internet every day and more people are putting their trust into online transactions. The larger the market gets, the more opportunity there is for criminals," said Clark.

Internet filtering company Websense, which helps the APWG analyse its results, found that a quarter of phishing websites are hosted in the US and most are only online for just around two days.

Election fever in the US led some phishers to spoof Democratic candidate John Kerry's website and steal campaign contributors' credit card details.

Susan Larson, vice president of global content at email security firm SurfControl, said that although the websites have been taken down, there will be more.

"Phishers and other scam artists are masters of leveraging timely events to exploit the unwary. People excited by a new candidate are more likely to volunteer confidential information like email addresses and credit card numbers," said Larson.

Munir Kotadia writes for ZDNet UK