Computer Crime Research Center

hack/hack55.jpg

Hunting on IM accounts

Date: October 19, 2006
Source: Zwire.Com


In a twist on phishing, cybercrooks are hijacking instant-messaging accounts to lure people to their information-thieving Web sites.

Traditional phishing scams send out spam e-mail that contain links to fraudulent Web sites. These sites try to trick people into giving up sensitive information, such as credit card details, Social Security numbers or login credentials for online services.

In a tactic that includes an arsenal of online weapons, scammers are now also commandeering IM accounts to spread their bait. The barrage of attacks used includes account hijacking, phishing and SPIM, or spam via instant messaging.

On Friday, for example, a Yahoo employee found that scammers had used her account. They sent her Yahoo Messenger contacts a link to a phishing site. The miscreants had gotten hold of her login credentials, probably through another scam that she had fallen for, the company said.
Original article



Add comment  Email to a Friend

Copyright © 2001-2013 Computer Crime Research Center
CCRC logo