New Delhi: Twitterers and users of Facebook, beware for hackers as accounts on your popular social networking sites maybe hoodwinked into revealing your identities, warn experts.
Last week, hackers attacked Facebook twice, causing a host of users to reveal their personal information.
The hoax cleverly duplicated the site's messaging service to send messages to the users. Those gullible enough to click on the link were transported to a look-alike log-in page and asked to re-enter their credentials.
Those who complied ended up divulging their personal information.
"Phishing and spam will continue to increase on social networks as users migrate large portions of their Internet activity such as e-mail to these properties," said Chief Executive and Managing Director of MicroWorld Technologies Govind Ramamurthy.
The MicroWorld Technologies is an anti-virus, anti-phishing solutions provider.
Identity theft or phishing (pronounced 'fishing'), as it is known in Internet parlance, is when a fraudster sends out e-mails pretending to represent an established company or bank to extract personal information.
Though hacking has been prevalent since the World Wide Web became popular, experts say hackers are re-inventing themselves to gain access to confidential information.
In fact, for opportunistic scammers and spammers looking for an issue to exploit, nothing is too trivial, not even swine flu.
Following its global outbreak, "spamvertising" links to pharmaceutical scams and bogus "Swine Flu Survival Guides" have sprung up across the web using search engine optimisation techniques.
Result: users searching for swine flu information on Google were directed to bogus sites.
"When one goes fishing, he throws his net in the area where there would be maximum number of fish. Similarly, social engineering sites have the maximum number of catch for hackers,"said Head of Information Security Global consulting firm KPMG Akhilesh Tuteja.
What's particularly alarming is that people can be trapped even when browsing for something innocuous on Google.
"What we read in fiction has now become real. Sometimes, when you are searching for the link to your bank, a thousand other links pop up. One needs to be sure of the link one is clicking on," Ramamurthy told IANS.
"More than 12 banks have been phished in 2008-09 in India including ICICI and Bank of India." he added.
So how safe are the solutions against phishing?
"No solution promises 100 percent secure network. It is the user who has to be careful and cross-check any link or URL before clicking on it," Ramamurthy said.
"Though anti-phishing solutions flush out most fake websites, it's always possible hackers will infiltrate through e-mail or SMS on your mobile."
According to Indian Computer Emergency Response Team (CERT-In) under the Communications and Information Technology Ministry, 505 security incidents were reported last month. Of these, about eight per cent were phishing-related.
Anti-virus Internet security firm Symantec, in a recent Internet Security Report to CERT-In, said, global malicious code activity continued to grow at a record pace through 2008, primarily targeting confidential information of Net users.
"Due to a rapidly growing Internet infrastructure, a burgeoning broadband population and rampant software piracy, India is expected to witness increased malicious activities," Symantec Managing Director Vishal Dhupar said.
"Over the past year, Symantec has observed a 192 per cent increase in spam detected across the Internet as a whole, from 119.6 billion messages in 2007 to 349.6 billion in 2008."
The report said 55,389 cases of phishing were detected in 2008, a 66 per cent growth over the previous year.
According to Tuteja, it is vital that anti-malware solutions are installed instead of a simple anti-virus solution. "Awareness remains the key," he said.
Comments
0 comment