Sunday, December 13, 2009

Yahoo Hosting Customers’ Threatened by Attempts to Hijack Websites

NEW YORK– The customer protection company for online businesses, Trusteer, today issued a security advisory that warns the customers of website hosting companies, including yahoo.com, against a new phishing attack aimed at stealing their content management system log-in credentials. The e-mails discovered by Trusteer appear to be from Yahoo.com (and other website hosting firms) and ask website owners to confirm their cPanel/FTP account information. Using this information, criminals are uploading look-a-like bank website pages to steal funds.
cPanel is a very popular CMS (Content Management System), used by many leading hosting providers, including Yahoo. It is used to perform website operations, including FTP account control and setup, which can be used to upload content to the cPanel-managed web site. Over the past few days, Trusteer’s security monitoring service has detected a phishing email campaign targeting owners of cPanel-based sites at various hosting providers. The attack is designed to harvest the FTP credentials of site owners, using cPanel-oriented messaging. The full report is available at: http://www.trusteer.com/files/cPanel-FTP-Phishing-advisory.pdf
“The ability to upload arbitrary content into relatively small and less popular sites may seem un-interesting fraud-wise,” said Amit Klein CTO of Trusteer and head of the company’s research organization. “However, evidence we have collected over the past few months connects cPanel-driven sites to online banking fraud. By stealing cPanel login credentials, criminals do not need to use hacking tools to upload content to a website, and therefore can avoid detection until after they have siphoned funds from consumer and business banking accounts.”
About Rapport
Rapport from Trusteer is a lightweight browser plug-in plus security service that acts like a vault inside the browser and prevents redirection of user information to fraudulent websites. It protects personally identifiable information (PII) and Web pages from unauthorized access and theft while users are accessing sensitive Web sites. Trusteer also offers in-the-cloud reporting services where unauthorized access attempts detected by Rapport are analyzed by fraud experts who provide actionable intelligence to financial institutions.
About Trusteer
Trusteer enables online businesses to secure communications with their customers over the Internet and protect PII from a user’s keyboard into the company’s Web site. Trusteer’s flagship product, Rapport, allows online banks, brokerages, healthcare providers, and retailers to protect their customers from identity theft and financial fraud. For more information visit www.trusteer.com.
Related News : http://indiahostingdirectory.com

4 comments:

Cloud Hosting India said...

Hi
Great blog i like it
One of the biggest benefits of this sort of web hosting service is that you can have access to the server from anywhere in the world which helps to keep your business going.

Cloud Hosting India

Anonymous said...

Excellent goods from you, man. I’ve understand your stuff previous to and you are just extremely magnificent. I really like what you’ve acquired here, really like what you’re stating and the way in which you say it. Website Hosting India

domina said...

Always yahoo releases the customer Favor products..And the release of this would help many of the customers..Thanks for sharing this..
indian domain names

Web Hosting India said...

I recently came across your blog and have been reading along. I thought I would leave my first comment. I don’t know what to say except that I have enjoyed reading.web hosting in india