All the latest UK technology news, reviews and analysis


Symantec warns on credit card security phishing scam

17 Apr 2013
malware virus security threat scam

Symantec has uncovered a cyber scam duping victims into handing over their financial information using a bogus security guidance web page.

The security firm reported uncovering the phishing scam in a blog post on Wednesday. The scam targets its victims using a bogus message masquerading as a security alert from a legitimate, unnamed credit card service provider.

"In March, we discovered a phishing site spoofing a popular credit card services company that asked users for confidential information, allegedly for additional security," wrote Symantec's Mathew Maniyara.

The message instructed its victims to disclose sensitive banking information that could be used by the attackers to illegally access their finances.

"The phishing site prompts users through a three-step procedure for activating their card and adding higher security. The first step asks users for personal and card-related information," wrote Maniyara.

"The personal information includes the users' name, date of birth, residential address, phone number, and email address. The card information includes name of bank, name on card, card number, expiration date, and card verification code."

Phishing scams and attacks on the financial sector are a growing problem facing the security industry.

The attacks range in sophistication, with some targeting the sector with basic, opportunistic phishing messages and others utilising sophisticated malware.

Prior to the phishing scam Symantec uncovered an evolved version of the Shylock targeting banks.

  • Comment  
  • Tweet  
  • Google plus  
  • Facebook  
  • LinkedIn  
  • Stumble Upon  
Alastair Stevenson
About

Alastair has worked as a reporter covering security and mobile issues at V3 since March 2012. Before entering the field of journalism Alastair had worked in numerous industries as both a freelance copy writer and artist.

View Alastair's Google+ profile

More on Security
What do you think?
blog comments powered by Disqus
Poll

Work location poll - office, remote or home?

Where do you spend most time working on your primary work device?
71%
6%
0%
0%
23%
0%

Popular Threads

Powered by Disqus
LG G Flex 2 hands-on review

CES 2015: LG G Flex 2 video

A closer look at LG's latest curved-screen smartphone

Updating your subscription status Loading
Newsletters

Get the latest news (daily or weekly) direct to your inbox with V3 newsletters.

newsletter sign-up button
mubaloo2

Beacon technology: what are the opportunities and how does the technology work?

This paper seeks to provide education and technical insight to beacons, in addition to providing insight to Apple's iBeacon specification

ibmv3may

Converting big data and analytics insights into results

Successful leaders are infusing analytics throughout their organisations to drive smarter decisions, enable faster actions and optimise outcomes

IT Security Analyst (Cyber, Wireshark, SIEM)

IT Security Analyst (Cyber, Wireshark, SIEM) Why apply...

Systems Operations Supervisor

Our Client is seeking an Operations Systems Analyst/Supervisor...

Project Manager / Technical Project Manager - (Prince 2, ERP, MS Project, ISO, PPI)

Project Manager / Technical Project Manager - (Prince...

Software QA Tester - No.1 Online Video Gaming Tech Provider

Software QA Tester - No.1 Online Video Gaming Tech Provider...
To send to more than one email address, simply separate each address with a comma.