All the latest UK technology news, reviews and analysis
|
|
|
04 Feb 2008
A new spear phishing attack is targeting the email accounts of US university students.
Researchers at Sans Institute said that the attacks are disguised as messages from administrators performing a 'database update'.
The messages state that in order to keep their email accounts, the students must 'verify' the accounts by replying to the message with details such as user names, passwords and date of birth.
Researcher Mark Hofman wrote in the Internet Storm Center blog that the attacks are similar to those on European ISPs spotted earlier this year.
The attackers use email addresses with the name of the school, although the accounts are hosted by an external email service such as Hotmail.
Hofman noted that, because the attack targets individual students, few messages are sent and the emails will often slip past spam filters.
Administrators should be on the lookout for a large volume of incoming messages from the same address, as well as a large volume of messages with multiple recipients. Students should also be warned about the attacks.
Latest stories from Security
Related videos
Related articles
Related jobs
Poll
Are you confident that the UK's IT infrastructure is secure from attack in the wake of the Flame malware revelations?
Orange and Intel talk us through the ins and outs of their San Diego smartphone
Connect with V3.co.uk
The wrong printers, for the wrong tasks on the wrong contracts
Who leads the BI pack and who should we be watching out for?
Implementation Consultant - Business Intelligence Software...
SQL Server DBA, ETL, SSIS, Datawarehousing, Financial...
Job description *Customer facing: should be able to...
PHP / MySQL / Zend Framework Developer - Chelmsford...
Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.
Do you agree?