Hackers Acquire Google Certificate, Could Hijack Gmail Accounts

Hackers have obtained a digital certificate good for any Google website from a Dutch certificate provider. Criminals could use the certificate to conduct “man-in-the-middle” attacks targeting users of Gmail, Google’s search engine or any other service. Attackers could poison DNS, present their site with the fake cert and bingo, they have the user’s credentials. Man-in-the-middle […]

Continue Reading

“Chat-in-the-Middle” Phishing Attack via Bogus Live-Chat Support

A new, unique type of phishing attack targeted against online banking customers was recently discovered by the RSA FraudAction Research Lab. RSA has coined this as a “Chat-in-the-Middle” phishing attack and it is first executed through routine means but then presents a more advanced layer of perpetrating online fraud. The phishing attack may dupe bank […]

Continue Reading