Man-in-the-middle phishing scheme targets Amazon.com

By

Amazon.com is the latest target of a new wave of phishing schemes known as man-in-the-middle attacks.


Washington Post reporter Brian Krebs reported today on his Security Fix blog that hackers have created a bogus site meant to dupe users of the popular online retailer into giving up their login information.

Volunteer-based security and privacy website Castlecops.com alerted Krebs about the attack, which begins with an email message asking users to update their account credentials because Amazon.com has detected unauthorized activity.

Unsuspecting email recipients who follow the link are brought to a bogus login page that resembles the real thing but communicates between the user's PC and the legitimate Amazon site. The attacks - a similar one hit Citibank this summer - are particularly dangerous because neither party knows they are happening, experts said.

The trick is further legitimised when users enter the wrong login information. They are shown the usual page that appears when incorrect usernames and passwords are entered on the real Amazon site.

The Amazon attack appears flawed though, Krebs reported. First, the URL of the bogus site was not spoofed to reflect the genuine Amazon site. And, new anti-phishing technology included in the latest Internet Explorer and Firefox browsers appears to flag the fake site as a phishing page.

An Amazon.com spokesman did not return an email seeking comment today.

"This use of man-in-the-middle is fairly new," Russell Dean Vines, president and founder of The RDV Group, a New York-based security consulting services firm, told SCMagazine.com today. "I think it's going to become better executed than this one was. These are going to become a little tougher to fight."

Click here to email reporter Dan Kaplan.
Got a news tip for our journalists? Share it with us anonymously here.
Tags:
amazoncommaninthemiddlephishingschemesecuritytargets

Sponsored Whitepapers

Leverage Technologies: Industry-Tailored ERP Implementation for Growth and Compliance
Leverage Technologies: Industry-Tailored ERP Implementation for Growth and Compliance
Service Over Signatures: The Truth About No Lock-In IT
Service Over Signatures: The Truth About No Lock-In IT
Wasabi Reveals Hidden Costs and Cloud Storage Shifts in ANZ for 2025
Wasabi Reveals Hidden Costs and Cloud Storage Shifts in ANZ for 2025
Datacom + Microsoft Azure: Turn Ideas Into Impact in Just 4 Weeks
Datacom + Microsoft Azure: Turn Ideas Into Impact in Just 4 Weeks
Protect APIs. Protect Your Business.
Protect APIs. Protect Your Business.

Events

Most Read Articles

CBA using facial recognition logins to verify disputed payments

CBA using facial recognition logins to verify disputed payments
Qantas contacted by "potential cyber criminal"

Qantas contacted by "potential cyber criminal"
SA Power Networks tackles IAM, cloud security under five-year strategy

SA Power Networks tackles IAM, cloud security under five-year strategy
Qantas facing 'significant' data theft after cyber attack

Qantas facing 'significant' data theft after cyber attack
techpartner.news logo
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
"It's an exciting time to be part of the health and aged care sector"
"It's an exciting time to be part of the health and aged care sector"
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Orro claims Australia first with managed digital asset discovery service
Orro claims Australia first with managed digital asset discovery service

Log In

  |  Forgot your password?