Criminal Spammers Use New VoIP Scheme for Phishing Attacks in Attempt to Gain Access to Consumer Personal Financial Information
SAN FRANCISCO, April 28, 2006—Cloudmark, Inc., a leader in messaging security solutions, is alerting consumers to a new form of phishing (email fraud) attack in which attackers masquerade as financial institutions and send emails urging recipients to call phone numbers to correct problems. On calling, recipients hear phone selections that mimic financial institutions' "phone trees," and are requested to enter personal information such as account number, PIN number or social security number.
The numbers readers are directed to dial actually connect to Internet phone systems (commonly known as Voice-over-Internet Protocol or VoIP) and recorded automated attendants. According to Cloudmark, the use of VoIP makes it easier for criminals to generate and delete new numbers very quickly and cheaply, making it harder for traditional anti-spam and phishing solutions to flag fraudulent phone numbers and for authorities to trace the numbers to perpetrators.
Cloudmark urges those receiving suspicious emails claiming to be from financial institutions to verify phone numbers against those printed on ATM cards or bank statements.
The threat was blocked within moments for subscribers to Cloudmark's Desktop platform and to Internet services leveraging Cloudmark in their infrastructures.
Cloudmark is often first to detect and block new forms of messaging-based attacks by leveraging a global community of trusted spam reporters in tandem with highly intuitive and immediately responsive automated technology, combined with unique "fingerprinting" technology that allows the system to proactively prevent mutations of attacks. For more information, visit www.cloudmark.com.
About Cloudmark
Cloudmark protects 2 billion global subscribers daily from an explosion in messaging abuses across more operator networks than anyone else. Only Cloudmark defends the world’s largest Mobile, Fixed and Social Media Providers, including AT&T, Comcast, MySpace, NTT, Swisscom and Time Warner Cable, with scalable and accurate protection against the widest range of existing and emerging messaging threats.