Phishers turn DNS against authorities
Phishing scammers are cleverly abusing automated "bots" by targeting DNS servers, security experts have warned. The new technique makes it significantly harder to shut down phishing sites.
In a conventional phishing scam, users are lured to a malicious website which counterfeits the appearance of a trusted site such as a bank or e-commerce site, and convinces the user to input their account information. Such scams can only operate for a limited time before they come to light though and the malicious site is shut down, normally by the ISP that hosts the site.
Matthew Broersma at Computerworld.
[ Read more ]