APWG Report: Cybercrime Gangs Ramp Up Phishing Attacks in 2018
The phishing attacks of early 2018 targeted users of online payment services more than in any other industry sector, accounting for 39 percent of all phishing attacks. APWG member MarkMonitor also saw modest increases in phishing that targeted SAAS/webmail providers (19 percent of the total) and file hosting/sharing sites (11 percent). Phishing against banks’ brands dropped slightly, to 14 percent.
Some phishers also adjusted their tactics in the period. “In Q1 2018, there was a marked increase in URL detections starting in February and ramping up through March, but the number of unique phishing domains remained flat,” said Stefanie Ellis, AntiFraud Product Marketing Manager, MarkMonitor. “This increase in URLs can largely be attributed to one-time-use URLs. These unique URLs are automatically generated by phishers to allow for a one-time access by victims to a unique phishing URL.“
In other news, APWG member RiskIQ analyzed what domain names were used by phishers and found domain use generally matched market share among top-level domains and registrations.
"Because cybercriminals focus on the cost-benefit analysis of their activities, they like to register their domains with the cheapest, most common registrars," said Yonathan Klijnsma, Head Researcher at RiskIQ. "This is why phishing domain use often correlates with the market share of top-level domains and why the web hosters associated with phishing sites—many of which come from compromised websites—are typically the largest ones. For instance, GoDaddy, the largest hosting provider in Q1 2018, was also the top registrar affected by phishing."
APWG member PhishLabs continued its monitoring of the use of HTTP protection on phishing web sites. By the second quarter of 2018, PhishLabs more than a third of phishing attacks were hosted on Web sites that had HTTPS and SSL certificates, reflecting and the general increase in HTTPS deployment on the Internet.
Crane Hassold, PhishLabs Director of Threat Intelligence, said, “Following the pattern we’ve seen over the past 18 months, the percentage of HTTPS phishing sites continues to grow and now comprises more than a third of all attacks globally. While some of this increase is due to the general adoption of HTTPS across the web, much of this trend has been driven by threat actors registering malicious domains and obtaining free SSL certificates to make their phishing sites appear more legitimate. As browsers add more negative visual indicators that cause general web users to become less trusting of HTTP websites, we expect this trend to continue and likely accelerate.”
Axur, the APWG’s observer in Brazil, recorded significant increases in web-based scams on sites like Facebook, and saw phishing via text messages.
Müəllif
Metbuat.az
Qaynar xətt
0552252950
Həmçinin oxu
Süni intellekt üçün internet “Bakcell”dən
en.ictnews.az
DİGƏR XƏBƏRLƏR
Daha çox »Top xəbərlər
Layihələr
Son xəbərlər
Türkiyə nəhəngi dünya çempionatının ulduzunu transfer edir
Bu gün
·
19:05
Nazir ona vəzifə verdi
Bu gün
·
18:18
Milli Məclisin növbədənkənar sessiyasının son iclası keçiriləcək - YENİLƏNİB
Bu gün
·
17:28
Hərbçimiz vəfat etdi
Bu gün
·
17:08
Hasil Abbasov üç nəfərə yüksək vəzifə verdi
Bu gün
·
17:06
Şimşək çaxacaq, dolu düşəcək - XƏBƏRDARLIQ
Bu gün
·
17:04
Əli Əsədov Rusiyanın səhiyyə naziri ilə görüşdü
Bu gün
·
16:47
Rafael Ağayevə ağır itki üz verdi
Bu gün
·
16:35
Paytaxtda maşından meyit tapıldı
Bu gün
·
16:25
Azərbaycanda bank kartları ilə bağlı mühüm açıqlama
Bu gün
·
16:08
“Azərsun Holdinq” şəkər çuğunduru emalı həcmini 800 min tona qaldıracaq
Bu gün
·
15:54
Moda dizayneri Kamilla Məmmədzadə "Yes Couture"brendi ilə birlikdə Azərbaycan xalçalarından ilhamlanan kolleksiyasını təqdim etdi – FOTO
Bu gün
·
15:50
Salahın meneceri Türkiyədə: Bu kluba keçir
Bu gün
·
15:33
Oğuzda meyit tapıldı
Bu gün
·
15:25
Geomaqnit qasırğası olacaq
Bu gün
·
15:05