RSA FraudAction Research Lab
The RSA FraudAction Research Lab is made up of some of RSA's most experienced online security researchers. In this blog those researchers will report in real-time on new developments in online crime -- and in the Internet environment of fraud and those who perpetrate it. This blog will bring you the team's unprecedented insight, findings and opinion on topics including Trojans, phishing techniques, Botnets and the online crime "underground" economy.
Cybercriminals Now Using Public Social Networks to Give Command and Control Orders to Banking Trojans
|
While malware updating via public resources is nothing new in itself, the RSA FraudAction Research Lab recently witnessed this hosting method being used to operate a banking Trojan; specifically a variant of...
Continue Reading
AS-Troyak Exposes a Large Cybercrime Infrastructure
|
Last week, RSA and other security professionals noticed a sudden halt in the activity of an upstream Internet connectivity provider named “AS-Troyak”, thus causing...
Continue Reading
U.S Colleges and Universities Become a Favored Target for Phishing
|
Since the beginning of the year, RSA has detected several phishing attacks disguised as the online portals or webmail services of American higher education institutes...
Continue Reading
Fraudster-Operated Call Centers Emerge in the Underground Economy to Facilitate Phone Fraud
|
Since the beginning of the year, RSA has uncovered several one-stop-shop call centers in the fraud underground that provide fraudsters with all the tools they need to commit fraud over the phone.
Continue Reading
Deep Inside a Reshipping Scam: Mules Victimized by "Air Parcel Express"
|
Since last fall the RSA FraudAction Research Lab has tracked several different reshipping scams engineered by online fraudsters to “Cash Out” merchandise purchased using stolen payment cards through the involvement of mules. We will profile one such scam in-depth – Air Parcel Express –that was discovered by RSA. First we will outline who is involved in a reshipping scam and how they generally operate.
Continue Reading
The Arms Race between Black Hats and White Hats Steps Up with URLZone Trojan
|
The arms race between cybercriminals and security professionals has recently stepped up, with the online gang behind the URLZone Trojan driving one more rung into the evolutionary ladder of online crime.
Continue Reading
"Chat-in-the-Middle" Phishing Attack Attempts to Steal Consumers' Data via Bogus Live-Chat Support
|
A new, unique type of phishing attack targeted against online banking customers was recently discovered by the RSA FraudAction Research Lab. RSA has coined this as a "Chat-in-the-Middle" phishing attack and it is first executed through routine means but then presents a more advanced layer of perpetrating online fraud. The phishing attacks may dupe bank customers into entering their usernames and passwords into an ordinary phishing site but the addition of a bogus live chat support window can obtain even more credentials via a live chat session initiated by fraudsters.
Continue Reading
Zeus Trojan Leverages IM Software to Forward Stolen Online Account Data
|
During its investigation of several Zeus Trojan attacks over the past three months, the RSA FraudAction Research Lab discovered and tracked a new online attack method employed by criminals that can quickly leverage compromised credentials.
Continue Reading
