This is scary

Posted on March 19, 2007 by Jeremy Clark

According to Symantec

U.S.-based credit cards with a card verification number were available for between US$1 to $6, while an identity” including a U.S. bank account, credit card, date of birth and government-issued identification number” was available for between $14 to $18,

To gain access to the information needed for the sale of identities hackers use a combination of social engineering, maliciously crafted word documents, and any of the zero-day exploits being announced all the time. They then send the word document with it’s dubious payload to unexpecting users. Since it is a word document commonly assumed to be safe and since most email servers don’t block these type of attachments, the user happily clicks on it and all is lost.

  • Symantec has a video showing how these attacks happen.
  • Macworld has the rest of article on this very scary transaction.
  • Symantec’s full white paper on the whole deal here. (warning large pdf)
  • Itwire also has this article on more of Symantec’s report.

About Jeremy Clark

Small town IT worker with interests in all things technological and technical. Biggest interests are in web development especially the WordPress publishing platform and the community supporting it. Currently developing and maintain the free WordPress theme Techozoic. I'm also always available for hire.
This entry was posted in security and tagged , , , , , . Bookmark the permalink.