The website of the Financial Reporting Council of Nigeria has recently been used by cyber criminals to engage in a phishing expedition. The Council itself is legitimate, as is the website but it would appear that hackers were able to plant phishing content into an images directory on said site.
The scam was a direct attempt to access personal email accounts – users were asked to enter their email address, password and the phone number used as backup login credentials. Indirectly, such data could be used to gain access to other online accounts in cases where the login details have been reused. The major email providers – Gmail, Yahoo, Hotmail and AOL were the primary targets for the scam. Having collected the data the username, password and IP address would then be emailed to the fraudster. A third-party web service may be utilized to deduce the location of the victim.
The phishing kit used has been identified as a customizable, freely available PHP-based toolkit which has been used to compromise a number of other websites over the past nine months. Evidence suggests that the FRCN's website was hacked by a remote attacker.
0 comments:
Post a Comment