Media releases are provided as is by companies and have not been edited or checked for accuracy. Any queries should be directed to the company itself.

Do-it-yourself phishing kits found on the internet, reveals Sophos

  • 20 August, 2004 12:56

<p>Sophos experts have discovered that do-it-yourself phishing kits are being made available for download free of charge from the internet.</p>
<p>Anyone surfing the web can now get their hands on these kits, launch their own phishing attack and potentially defraud computer users of the contents of their bank accounts.</p>
<p>These DIY kits contain all the graphics, web code and text required to construct bogus websites designed to have the same look-and-feel as legitimate online banking sites. They also include spamming software which enables potential fraudsters to send out hundreds of thousands of phishing emails as bait for potential victims.</p>
<p>Sophos researchers believe that hundreds of thousands of phishing emails are sent across the internet every day, each designed to defraud money from innocent computer users, and the problem is growing. With phishing kits now becoming freely available over the net, Sophos predicts this worrying trend is set to continue.</p>
<p>"Until now, phishing attacks have been largely the work of organised criminal gangs, however, the emergence of these 'build your own phish' kits mean that any old Tom, Dick or Harry can now mimic bona fide banking websites and convince customers to disclose sensitive information such as passwords, PIN numbers and account details," said Graham Cluley, senior technology consultant, Sophos. "There is plenty of profit to be made from phishing. By putting the necessary tools in the hands of amateurs, it's likely that the number of attacks will continue to rise."</p>
<p>Sophos is urging computer users to be wary of any emails asking them to reconfirm sensitive financial information and advises that anti-spam software at the email gateway can prevent these unsolicited email messages from even reaching inboxes.</p>
<p>"Recipients of suspicious emails claiming to come from online banks should just delete them and should certainly not click on the links contained within the messages," continued Cluley. "Web hosts and ISPs can also play their part in the fight against phishers by closing down websites if they find these kits posted on their servers."</p>
<p>Notes for Editors</p>
<p>About Sophos
Sophos is a world leading specialist developer of anti-virus and anti-spam software. Sophos is headquartered in the UK and protects all types of organisations, including small- to medium-sized businesses, large corporations, banks, governments and educational institutions against viruses and spam. The company is acclaimed for delivering the highest level of customer satisfaction and protection in the industry. Sophos's products, backed by 24 hour support are sold and supported in more than 150 countries.</p>
<p>Sophos's regional head office for Australia and New Zealand is in Sydney and hosts one of the company's three Computer Virus Research and Development Laboratories to provide global support services.</p>
<p>http://www.sophos.com.au</p>
<p>FOR FURTHER INFORMATION:
Sophos's Managing Director for Australia and New Zealand, Rob Forsyth (rob.forsyth@sophos.com.au), is available for comment:
+61 2 9409 9100 (tel)
+61 2 9409 9191 (fax)</p>
<p>Sophos's press contact at Gotley Nix Evans is:
Michael Henderson (sophos@gne.com.au)
+61 2 9957 5555 (tel)
+61 413 054 738 (mobile)
+61 2 9957 5575 (fax)</p>

Most Popular

Market Place