iTnews
  • Home
  • News
  • Technology
  • Telco/ISP

ISPs urged to filter spam and phishing attacks

By Andrew Charlesworth
Oct 4 2006 10:06AM
Follow google news

Huge rise in malware should be tackled at the internet level, says security
firm.

ISPs urged to filter spam and phishing attacks
Consumers should lobby their ISPs to adopt aggressive filtering technology to cleanse email of phishing and spam attacks before it reaches their home PCs, a security expert has said.

Phishing emails now comprise more than half of all malware intercepted by security firm MessageLabs, the company said in its latest quarterly security report, and phishing techniques are becoming increasingly sophisticated. 

Mark Sunner, chief technical officer at MessageLabs, told vnunet.com that the best protection is not more stringent end-user security, but filtering by ISPs at the internet level. 

Phishing accounts for 52 percent of malware, up from 30 percent in August and 20 percent in July.

Botnets sending out spam and phishing emails are programmed to avoid segments of the internet where MessageLabs filters are active, according to Sunner.

But where MessageLabs has set up 'honeypots' of seemingly unprotected PCs, the rate of phishing is close to 90 percent.

"The huge jump is probably because the phishers are making hay while the sun shines and targeting banks which do not yet have two-factor authentication," said Sunner.

European banks have been moving from simple password protection to two-factor authentication based on a password plus a number generated for a single online banking session.

Examples of these systems include a random number generator given to account holders, a series of scratch-off numbers on the account statement or a number delivered on-demand by SMS.

But Sunner warned that two-factor authentication is not the 'silver bullet' that banks assume it to be.

MesageLabs has seen key-capture trojans specifically targeted at banking sites which only activate once the customer has gained access to the banking site.

The trojans then enable the session to be remotely hijacked and funds siphoned off into another account.

"So far this looks like a proof-of-concept and we have not seen it used in earnest," said Sunner.

Phishers are also harvesting information from other sites so that they can target only the known account holders of a certain bank. MessageLabs warned of more sophisticated spam and phishing attacks early in September.

Add iTnews as your trusted source

Add iTnews As Your Trusted Source Add iTnews As Your Trusted Source
Got a news tip for our journalists? Share it with us anonymously here.
Copyright ©v3.co.uk
Tags:
andattacksfilterispsphishingspamtelco/isptourged

Related Articles

  • Superloop self-serve AI resolutions top 330,000 cases Superloop self-serve AI resolutions top 330,000 cases
  • Superloop merges wholesale FTTP operations under a single brand Superloop merges wholesale FTTP operations under a single brand
  • TPG Telecom using AI to chase better customer NPS TPG Telecom using AI to chase better customer NPS
  • Telstra, Google Cloud take capacity on each other's networks Telstra, Google Cloud take capacity on each other's networks
Join our WhatsApp Channel

Partner Content

You meet the security standard. Shame no one can see it
Promoted Content You meet the security standard. Shame no one can see it
Scalable AI solutions: secure delivery
Scalable AI solutions: secure delivery
Thomas Peer Solutions unveils data cloud platform and executive leadership forum for 2026
Partner Content Thomas Peer Solutions unveils data cloud platform and executive leadership forum for 2026
AI is delivering business value today
Partner Content AI is delivering business value today

Sponsored Whitepapers

Agile in the AI Era: why projects still fail
Agile in the AI Era: why projects still fail
When Technology Becomes the Blocker: Unlocking Real Outcomes from AI and Cloud
When Technology Becomes the Blocker: Unlocking Real Outcomes from AI and Cloud
High-volume data sources for AI-driven security analytics
High-volume data sources for AI-driven security analytics
How healthcare organisations can get more value from cloud
How healthcare organisations can get more value from cloud
1 in 3 companies lose SaaS data. Here’s how to prevent it
1 in 3 companies lose SaaS data. Here’s how to prevent it

Events

  • iTnews State of Security Breakfast iTnews State of Security Breakfast
  • iTnews State of Data & AI Breakfast iTnews State of Data & AI Breakfast
  • The 2026 iAwards The 2026 iAwards
  • Integrate 2026 Integrate 2026
  • Security Exhibition & Conference Security Exhibition & Conference
Share on Facebook Share on LinkedIn Share on Whatsapp Email A Friend

Most Read Articles

Telstra elevates Dayle Stevens to company-wide AI role

Telstra elevates Dayle Stevens to company-wide AI role
Superloop merges wholesale FTTP operations under a single brand

Superloop merges wholesale FTTP operations under a single brand
TPG Telecom using AI to chase better customer NPS

TPG Telecom using AI to chase better customer NPS
SUBCO, Firmus to double Tasmania's undersea internet capacity to mainland

SUBCO, Firmus to double Tasmania's undersea internet capacity to mainland
techpartner.news logo
Sydney-based AI-cloud waste startup raises $3m
Sydney-based AI-cloud waste startup raises $3m
Brennan uses NiCE to modernise its contact centre
Brennan uses NiCE to modernise its contact centre
Impact Awards: Tecala slashes customer response times for fintech IQumulate
Impact Awards: Tecala slashes customer response times for fintech IQumulate
Interactive introduces private cloud platform
Interactive introduces private cloud platform
Digital61 expands cybersecurity portfolio
Digital61 expands cybersecurity portfolio
All rights reserved. This material may not be published, broadcast, rewritten or redistributed in any form without prior authorisation.
Your use of this website constitutes acceptance of nextmedia's Privacy Policy and Terms & Conditions.