Over the past few days, there has been a new type of phishing e-mail spotted. This new phishing method no longer asks for credentials and other personal information. The new tactic is to pose as a company and ask for the end user to "renew" their digital certificate. A link is presented in the e-mail, which when clicked on will download a keylogging Trojan onto the computer. The Trojan is then used to steal information and/or credentials from the victim's computer. Currently the most commonly used companies to pose as include Comerica Bank and Colonial Bank.
The best way to avoid falling for this new malicious tactic: be aware that no financial institution will send you something to download or ask for confidential information.
Posted by Kitch Spicer on April 29, 2008, in Handlers Log.