In the line of our ongoing “educationâ€, we all know by now that eCrime is no longer lurking right there waiting for victims to come knocking, but is rather working vigilantly to ensure that whatever picks up the most interest online at any given moment is being used to boost the profitability of eCrime.
Having said that, starting to look for online shopping sites and figuring out what’s the best Christmas e-tailer to hit on was a bit too much of a hard work. The target picked for this season’s eCrime heist was a payment provider nonetheless. Checkfree.com had their DNS records hacked in an attempt by eCriminals to catch onto the beginning of the month bill payments. Customers trying to use the Checkfree service have been redirected to a server hosted in Ukraine which presented them with a blank page and attempted to exploit their browsers and install a Trojan into their systems.
Just like in any other seasonal event (1, 2), we were all expecting the Christmas shopping season to be littered with eCrime attacks (and we are still seeing a rise in the number of threats related to online shopping sites), but this one is really a step up in the level of audacity exhibited by cybercriminals.
Leave a Reply