APWG Report: Cybercrime Gangs Ramp Up Phishing Attacks in 2018
The phishing attacks of early 2018 targeted users of online payment services more than in any other industry sector, accounting for 39 percent of all phishing attacks. APWG member MarkMonitor also saw modest increases in phishing that targeted SAAS/webmail providers (19 percent of the total) and file hosting/sharing sites (11 percent). Phishing against banks’ brands dropped slightly, to 14 percent.
Some phishers also adjusted their tactics in the period. “In Q1 2018, there was a marked increase in URL detections starting in February and ramping up through March, but the number of unique phishing domains remained flat,” said Stefanie Ellis, AntiFraud Product Marketing Manager, MarkMonitor. “This increase in URLs can largely be attributed to one-time-use URLs. These unique URLs are automatically generated by phishers to allow for a one-time access by victims to a unique phishing URL.“
In other news, APWG member RiskIQ analyzed what domain names were used by phishers and found domain use generally matched market share among top-level domains and registrations.
"Because cybercriminals focus on the cost-benefit analysis of their activities, they like to register their domains with the cheapest, most common registrars," said Yonathan Klijnsma, Head Researcher at RiskIQ. "This is why phishing domain use often correlates with the market share of top-level domains and why the web hosters associated with phishing sites—many of which come from compromised websites—are typically the largest ones. For instance, GoDaddy, the largest hosting provider in Q1 2018, was also the top registrar affected by phishing."
APWG member PhishLabs continued its monitoring of the use of HTTP protection on phishing web sites. By the second quarter of 2018, PhishLabs more than a third of phishing attacks were hosted on Web sites that had HTTPS and SSL certificates, reflecting and the general increase in HTTPS deployment on the Internet.
Crane Hassold, PhishLabs Director of Threat Intelligence, said, “Following the pattern we’ve seen over the past 18 months, the percentage of HTTPS phishing sites continues to grow and now comprises more than a third of all attacks globally. While some of this increase is due to the general adoption of HTTPS across the web, much of this trend has been driven by threat actors registering malicious domains and obtaining free SSL certificates to make their phishing sites appear more legitimate. As browsers add more negative visual indicators that cause general web users to become less trusting of HTTP websites, we expect this trend to continue and likely accelerate.”
Axur, the APWG’s observer in Brazil, recorded significant increases in web-based scams on sites like Facebook, and saw phishing via text messages.
Müəllif
Metbuat.az
Qaynar xətt
0552252950
Həmçinin oxu
Süni intellekt üçün internet “Bakcell”dən
en.ictnews.az
DİGƏR XƏBƏRLƏR
Daha çox »Top xəbərlər
Layihələr
Son xəbərlər
Bu bürclər üçün şans qapıları açılır
Bu gün
·
01:15
Polad Həşimovun şəhadətə ucalmasından altı il ötür
Bu gün
·
00:12
İnsanlara güvənməyən ən şübhəçil 5 bürc
Bu gün
·
00:12
Azərbaycanda nə qədər ev ipotekadadır?
Dünən
·
23:55
D-8 Media Mükəmməllik Mərkəzinin strategiyası təqdim olundu
Dünən
·
23:53
Ən uzunömürlü 5 balıq: 200 ildən çox yaşayırlar
Dünən
·
23:52
ABŞ Hörmüzdə keçidlərin təhlükəsizliyini təmin edəcək - Tramp
Dünən
·
23:49
10 Avropa ölkəsi Antiballistik Raket Koalisiyası qurdu
Dünən
·
23:15
Bu tarixi sizin qədər bilən ikinci bir şəxs çətin ki, tapılsın - Prezidentdən Mirşahinə
Dünən
·
22:53
"Real"da Vinisiusun aqibəti bəlli oldu
Dünən
·
22:35
Peter Pelleqrini Azərbaycana rəsmi səfərə gəldi
Dünən
·
22:03
Pambıqdan yüngül planet kəşf edildi
Dünən
·
21:49
Bizim daxili risklərimiz yoxdur, bütün təhdidlər sərhədlərimizdən kənarda yaranır - İlham Əliyev
Dünən
·
21:16
Ərəblərdən ulduz futbolçuya təklif
Dünən
·
21:10
Azərbaycanın bu şəhərində evlər kütləvi satışa çıxarılır
Dünən
·
20:56