Phishers are still reeling in suckers using spoofed e-mails and fraudulent Web sites as bait, but they appear to running out of line. The number of phishing attacks on the financial services sector leveled off in May. However, phishers are getting more sophisticated as more than 95% of the attacks rely on the use of forged “from” addresses to hide their identity and to evade spam filters. The company most-targeted by phishing attacks in May was Citibank with 370 unique attacks, down from 475 in April, and compared to 98 in March, 58 in February, and only 34 during January. The number of attacks on the financial services sector increased slightly in May to 848 unique attacks, compared to 832 in April, 256 in March, 131 in February, and only 17 in January. Totally in May, there were 1197 new, unique phishing attacks reported to the Anti-Phishing Working Group. This was a relatively minor 6% increase over the number of attacks reported in April. The research group also noted that attacks against U.S. Bank surged 170%. Phishing attacks use “spoofed” e-mails and fraudulent Web sites to fool recipients into divulging personal financial data such as credit card numbers, account user names and passwords, social security numbers, etc. By hijacking the trusted brands of well-known banks, online retailers, ISPs and credit card companies phishers are able to convince up to 5% of recipients to respond to them.
“To view captured phishing attacks click here.”:http://www.cardweb.com/cardtrak/phishing/main.amp