Phone phishing, now playing at Paypal
Ezhil Arasan tipped us to a more sophisticated phone phishing attack at Paypal reported by Register. An email requests users to re-validate their user account by calling a phone number, instead of visiting a website.
Unlike the earlier phone phish at Santa Barabara Bank and Trust, this one verifies the account details the victim has been lured into giving before hanging up.
We'd like to hear what new defenses are coming up to combat phone phishing. Will someone offer an "Immediate take down" of the phone recording? :)
1 Comments:
Now with Phone Phising on the rise,
Telecom providers need to monitor
for spoofed IVR system like that of
spoofed websites.
In case of spoofed website, phishers mimic the original site, while in phone phising, they probably spoof IVR system. Wondering How easy it is to spoof the IVR system?
Post a Comment
<< Home