Victims of an industry-wide email scam could have been part of a so-called key-logging attack, according to one security expert.Amichai Shulman from security firm Imperva said the high numbers of victims suggested this type of attack.Unlike a traditional phishing scam, which lures people into revealing their details on fake websites, key-logging records individual key strokes.In some cases the malware could have been downloaded automatically.
http://news.bbc.co.uk/2/hi/technology/8294714.stmAlso see:Hotmail hacks easy as 123456
The Hotmail hack attack this week has laid bare the woeful password choices of web users, as reports emerged that up to 1 million web email accounts could have been compromised.The most common password was “123456”, while many users had names or dates of birth – all easy pickings for the determined password cracker.
http://www.smh.com.au/technology/security/hotmail-hacks-easy-as-123456-20091008-go3f.html
http://www.theage.com.au/technology/security/hotmail-hacks-easy-as-123456-20091008-go3f.html
Key-logging behind web Hotmail, Google, Yahoo mail scam
Victims of an industry-wide email scam could have been part of a so-called key-logging attack, according to one security expert.