Banks all over the world are fast taking on the challenge (and opportunity) of bringing part of their operations online. Sadly, being spoofed in a phishing attack is one of the risks financial services companies have to continually address via user education. Early this week we were able to catch a phishing attempt targeted at account holders of the National Bank of Kuwait (NBK). The phishing URL pretends to be a legitimate National Bank of Kuwait official login page: After ...

The Content Security (CS) team of TrendLabs has come across a new spear phishing incident that's reminiscent of the whale phishing incident documented last April, wherein bogus subpoenas were sent to CEOs. The new spam run involves email messages sent to specific organizations as notices of deficiency or tax petitions supposedly coming from the United States Tax Court (refer to Figure 1). Figure 1: Sample screenshot of the spammed spear phishing email Once members of a targeted organization click on the link in ...

When security researchers encounter a piece of code, they often have little idea about its ultimate objective. Analysts have to play online gumshoe when it comes to tracing the relationship of a single file to what is very often a multi-component attack. Storm has been on the foreground for quite some time as a primary example of how rampant (and undetected) zombified computers have become. Whenever analysts want to talk about the Internet's propensity to help administer organized crime, the Storm ...

The Trend Micro Content Security Team has encountered a phishing attack similar to what affected the Bank of America and Comerica recently. The scheme, which involves a malicious digital certificate supposedly downloaded from a link found in the spammed email, is now used to fool Merill Lynch Business Centre customers. Below is a screenshot of the spammed email message: The visible link in the said email is a hypertext string that leads to the phishing URL hxxp://wcma.businesscenter.mlbank.bcprivate9054.wcmaloginea.aspxsystem.meetingid.12469. programs.dvppserv.1291logon.info/WCMALoginEA.htm. The said URL ...

At its official Web site, the U.S. Treasury Department Federal Credit Union (TDFCU) makes known that its mission is “to serve the financial needs of our members as a safe and sound cooperative financial institution under sponsorship of the Department of the Treasury.” Its members include employees of the Treasury Department, Department of Homeland Security, U.S. Courts, and other similar companies & organizations in similar fields of government service. The TDFCU also has members who live, work, and do business ...