Conclusion Phishing Essay

Submitted By RachelM92
Words: 1031
Pages: 5
Open Document
Chat III: Phishing Reports Received by APWG from January, 2006 to January 2007
Source: Anti-Phishing Working Group (APWG)
The count of phishing reports as reported by
APWG is very alarming owing to the fact that companies that are victimized by phishing may not report these instances to law enforcement. Unlike some other types of Internet-based crime, such as hacking, that may be conducted surreptitiously, phishing, by its nature, involves public misuse of legitimate companies’ and agencies’ names and logos. Nonetheless, some companies may be reluctant to report all such instances of phishing to law enforcement - in part because they are concerned that if the true volume of such phishing attacks were made known to the public, their customers or accountholders would mistrust the companies or they would be placed at a competitive disadvantage. Though the number of unique phishing websites detected by APWG has decreased in December,
2006 and January 2007, yet the total average number of such websites in year 2006 has increased significantly in comparison to that in the year 2005.
Chat IV illustrates the growth of new phishing websites from January 2006 to January 2007.
Banday, M.T., Qadri, J.A. (2007). “Phishing - A Growing Threat to E-Commerce,”
The Business Review, ISSN: 0972-8384, 12(2), pp. 76-83.
Chat IV: New Phishing websites detected by APWG from January, 2006 to January 2007
Source: Anti-Phishing Working Group (APWG)
Most IT decision makers at Small and Medium
Businesses are aware of phishing through consumer scams but many do not believe that phishing poses a threat to organizations that are neither in financial services sector nor in the public eye. Phishing technologies have become so advanced that no one is immune to the possibilities of being scammed if they are searching for goods and services on the web and intend to pay by credit card (Dan
Ferguson, 2006).
Chat V: Ports used by Phishers
Source: Anti-Phishing Working Group (APWG)
Software processes running in computers need software ports to connect with other software processes. Inter Process Communication (IPC) takes place between these ports. Each process must be distinguished from other process and this is done with port numbers. Ports are numbered form 0 to
65536 with the most popular application and protocols such as FTP, SMTP, SNMP, HTTP, etc. are pre-assigned to “Well Known” ports. When a web browser contacts a web server it directs its message to port 80, “Well Known Port for HTTP services”. APWG report for January, 2007 indicated that a continuing trend of HTTP port 80 being the most used port for all phishing sites that have been reported (Chat V).
Chat VI shows the number of brands hijacked, number of unique password stealing malicious code applications and number of password stealing malicious URLs from January 2006 to January
2007. Though hijacked brands remained steady throughout these months yet numerous nontraditional websites such as social networking portals and gambling sites were hijacked.
Banday, M.T., Qadri, J.A. (2007). “Phishing - A Growing Threat to E-Commerce,”
The Business Review, ISSN: 0972-8384, 12(2), pp. 76-83.
50
100
150
200
250
300
350
400
Jan, 06 Feb, 06 Mar, 06 Apr, 06 May, 06 Jun, 06 Jul, 06 Aug, 06 Sep, 06 Oct, 06 Nov, 06 Dec, 06 Jan, 07
500
1000
1500
2000
2500
3000
3500
Password Stealing Malcious Code URLs (PSMC URLs)
Hijacked Brands PSMC UA PSMC URL's
Chat VI: Hijacked Brands, Password Stealing Malicious Code Applications and URLs
Source Data: Anti-Phishing Working Group (APWG)
Chat VI also shows the number of phishing based
Trojans as reported by APWG in form of malicious code applications and URLs that monitor specific actions for identity thefts.
Without paying careful attention to all suspicious emails and carefully checking the validity of all websites requiring entry of confidential information, employees of any size of company
Show More

Related Documents: Conclusion Phishing Essay

Cyber Crime Case Study

Phishing awareness and offence according to Malaysian cyberlaw. INDERA SYAH IYMAN BIN ROSLAN UiTM Machang, Kelantan, Malaysia. Abstract The aims of this paper are to measure the level of Malaysian cyber security against cybercrime regarding to phishing attacks. Most of the topic discussed in this paper focus on Malaysian cyber laws which comprises within Computer Crime Act 1997. Although phishing seems to be hitting on individual and organizations, it brings major impact towards economy and nation…

Words 1583 - Pages 7

Challenges Faced By Small Business

5. Phishing and spear phishing 5 6. Cloud computing risks 5-6 7. Firewalls 6 8. Fraud detection & prevention 6-7 9. Conclusion…

Words 1868 - Pages 8

Electronic Crime Essay

users and the code spreading to other users. One retweet manage that 38000 times retweet in two minute. Major TweetDeck users get affected by the hack included BBC breaking news and senior white house official account. (Csmonitor.com, 2014). As a conclusion, XSS hack is a serious vulnerability which made TweetDeck service shut down at that time and brings many users inconvenience. Impact of Cross-site scripting (XSS) Organization & customer Cross-site scripting (XSS) attack works and bring many…

Words 3953 - Pages 16

week3 assignment Essay

inadvertently and some with malicious intent. The top 3 internal security threats stated with ITsecurity.com has sparked some controversy. Number one according to them is that “your employees are selling you out, part 1”. This is prompted by spear phishing scams using email spoofing fraud to gather access to confidential data stored by corporation’s information systems. Employees could be unintentionally disclosing information to fraudulent websites unbeknown to them. They received counterfeit email…

Words 1020 - Pages 5

Essay on Categories of Computer Crime

detail the four common categories of computer crimes and provide at least one example for each. Explain which of these categories of computer crimes presents the greatest overall threat at the present time and why I perceive this to be the case. In conclusion, I will address what the U.S. government, court systems, and law enforcement agencies can do better to counteract this specific category of computer crime. Categories of Computer Crime Before the Internet, criminals…

Words 1226 - Pages 5

Applying Decision-Making Frameworks To IT Related Ethical Issues

been seen before and gives those criminal masterminds new ways to harm others. Computer-based crimes or cyber-crime has been increasing since the “internet” has gone “public” due to the abilities to perform illegal crimes, e.g. social engineering, phishing, indemnity theft, and unwanted software in a form of a virus or malware. Most devices that have a CPU can either be connected to the global information grid or remotely controlled by another device. Not only is devices becoming more connected but…

Words 1254 - Pages 6

Internet Security Essay

that seek to exploit weaknesses in information technology security. The internet has introduced new threats to information technology security. First, email has become an easy avenue for cyber-attacks. Email is used in phishing schemes. “The individuals behind phishing emails are typically online criminals. They send out millions of these messages in the hope that a few recipients will act on them and provide their personal and financial information. Anyone with an email address is at risk…

Words 1164 - Pages 5

Essay Sample: Smartphone Malware

Emerging security threats to Wireless Industry “Go Wireless” is the slogan every Individual/Industry/Organizations use today when using any wireless network deployments from the home Internet to the hand-held smart devices like iPad, Smartphones etc. More effort has been put in innovating new products day-to-day but less in security aspects of it. The following are the top 5 security threats to wireless industry which the wireless product manufacturers as well as the users will be facing in the…

Words 1463 - Pages 6

individual paper

finally I research PayPal which is paying stuff online. Mike did the website and organizing all the parts in our research. We send him all the parts so that he can paste it in and being creative with the website. The title of the website is gone phishing, mike came up with it. The name was kind of weird but it a start to our project. After we send him the research, we have to type our parts for the team report so that we can put it together can make a least four pages or something. After we have…

Words 1060 - Pages 5

Types Of Security Breaches

cache, which is programmed to be routinely flushed. The malware may be installed via a drive-by-download process (Ghosh, 2010). There are many other ways to set traps without the user’s knowledge some of those include Trojans, Virus, Worm, Pharming, Phishing. All of these cause harm to your computers and can cost companies and businesses thousands of dollars to fix. Preventing Security Breaches In order to create a fraud free environment companies and customers should have a general awareness of fraud…

Words 722 - Pages 3