TrendMicro reports on changing phishing techniques

According to surveys conducted by Internet security company TrendMicro, phishers have recourse to new ways of fooling users. Currently ever URL of phishing site is now not been seen in numerous messages analyzed by TrendMicro. It would seem that instead to provide the consumer with a legitimate email address.

A run on pishing from experience includes consumer receiving spam message, which directs that users of phishing site. People will receive a message that goes something like "you need to update your bank account information, please click on the following link, but so will be directed to a Web page that looks very similar to one of your bank. And through the completion of the requested information only plays into the hands of the phisher.

"But now, no URL seen in new phishing e-mail samples we found. They show instead of a legitimate email address. This is to mislead consumers that the recipient of a username and password, they will send a legitimate user, but looking at source code Mail will go to individual e-mail address, the phisher's, "says Aivee Cortez from TrendMicro.

One such spam message circulating on the Internet lately is informing consumers that are needed to upgrade their EarthLink account. As you may have already been so, the user is not asked to click the link and to visit a phishing site, but instead is required to forward a user name and password for the account of what seems to be the customer service of electronic address. Just to make sure for phishing attempt was successful; the message informs you that your account will be deleted unless you send this information.

He even goes so far as to say "This is an administrative Message from EarthLink. It is not spam. From time to time, EarthLink'll send such messages to communicate information about your subscription." By simply does not purport to be spam and come from the actual site, the message is authentic. But as a rule of thumb, which should never send to the powers of security, such as username and password, no matter who asks for it. This is one of the basic rules to keep your data safe and warm.