|
Rock Phish is also referred to as Rock Phish Kit. Authorities differ over its precise definition and about what sort of entity it is.[1][2] The common information is that it is either a hacker or group of hackers, or a phishing tool kit, or that the same name is used for each. Hackers are sometimes portrayed as mysterious and strange. ...
This phishing attempt, disguised as an official email from a (fictional) bank, attempts to trick the banks members into giving away their account information by confirming it at the phishers linked website. ...
Rock Phish Kit
The Rock Phish Kit is a popular tool designed to help nontechnical people create and carry out phishing attacks.[3][4][5] Like virus-making kits a few years ago, these kits are helping increase the number of phishing attacks, by making phishing methods more mainstream. The kit allows a single website with multiple DNS names to host a variety of phishing webpages, covering several banks and companies. This phishing attempt, disguised as an official email from a (fictional) bank, attempts to trick the banks members into giving away their account information by confirming it at the phishers linked website. ...
A website (or Web site) is a collection of web pages, typically common to a particular domain name or subdomain on the World Wide Web on the Internet. ...
DNS may refer to: Domain Name System Direct numerical simulation Doctor of Nursing Science 3,5-dinitrosalicylic acid This page concerning a three-letter acronym or abbreviation is a disambiguation page—a list of articles associated with the same title. ...
These kits are easily identified by the pattern in their URL: A Uniform Resource Locator, URL (spelled out as an acronym, not pronounced as earl), or Web address, is a standardized address name layout for resources (such as documents or images) on the Internet (or elsewhere). ...
URL: http://{domain name}/r1/{letter} Where the letter is some combination that attempts to fool the user. Usually the first letter of the bank or company is in the letter of the URL. The term domain name has multiple related meanings: A name that is entered into a computer (e. ...
Rock Phish Rock Phish is defined in the article by Robert McMillan[2] as a hacker or group of hackers stated to be behind "one-half of the phishing attacks being carried out these days". Because of the elusive nature of Rock Phish, the article reports Symantec as comparing it with the movie character Keyser Söze. VeriSign reports them as a group of Romanian origin.[1] Symantec Corporation NASDAQ: SYMC, founded in 1982, is an international corporation which sells computer software, particularly in the realms of security and information management. ...
Keyser Söze (pronounced KAI-zer SO-zay) is a fictional character in the 1995 movie The Usual Suspects, written by Christopher McQuarrie. ...
VeriSign, Inc. ...
References - ^ a b Compliance and Privacy (2006-12-5). What is Rock Phish? And why is it important to know?. Compliance and Privacy. Retrieved on 2006-12-15. “Rock Phish is an individual or group of actors likely working out of Romania and nearby countries in the region. This group has been in operation since 2004 and is responsible for innovation in both spam and phishing attacks to date, such as pioneering image-spam (Ken Dunham, VeriSign)”
- ^ a b Robert McMillan (2006-12-12). 'Rock Phish' blamed for surge in phishing 2. InfoWorld. Retrieved on 2006-12-13. “The first thing you need to know about Rock Phish is that nobody knows exactly who, or what, they are.”
- ^ Malware Review. Internet Industry Association (03 2006). Retrieved on 2006-12-13. “The so-called 'rock-phish' kit saves Phishers space and time: One single 'physical' site with multiple DNS names now holds a multitude of Phishing pages, covering a broad range of different banks.”
- ^ Websense alert. Websense Security Labs (2006-02-23). Retrieved on 2006-12-13. “Websense® Security Labs is seeing a significant increase in the number of Phishing kits used to host multiple target brands on a single host and deploy similar attack code on several machines. Currently the most popular is being referred to as the 'Rock Phish Kit'. The kit appears to have surfaced around November of 2005, but the frequency of its use is growing.”
- ^ Munir Kotadia (2006-02-28). http://news.zdnet.co.uk/internet/security/0,39020375,39254714,00.htm. ZDNet Australia. Retrieved on 2006-12-13. “According to Internet security company Websense, one of the most popular phishing kits is called Rock Phish Kit, which the company said was first seen last November.”
|
Feeds |
Contact