Voice tools under enemy fire

Finnish security vendor F-Secure has revealed the details of a major mobile phone SMS 419 scam unfolding across Europe, while researchers at Trend Micro warn of the increase in vishing attacks (phishing attacks on VoIP devices).

The aim is to steal sensitive data by persuading users to divulge personal details to re-activate their accounts, however, vishing attacks are becoming more sophisticated, warned Carolyn Guevarra technical communications at Trend Micro.

In a blog post on Friday, Guevarra said that it’s already difficult to trace vishing attacks because attackers can easily spoof Caller ID. However, now attackers are employing more sophisticated techniques and launching them at a large scale.

“Speaking of growing sophistication, vishing attacks have seemingly followed the footsteps of Web site compromises and advanced phishing techniques by using toolkits in sending vishing-related SMS,” wrote Guevarra.

“Earlier sightings of vishing attacks were reported in 2006 and have been slowly and silently increasing in momentum since then.”

More rigid security measures should be implemented, within financial institutions or businesses as well as individuals, added Guevarra.

Meanwhile, Mikko Hypponen, chief research officer at F-Secure has warned of an ongoing SMS email fraud underway, seemingly targeted towards European GSM network users.

According to Hypponen, people are receiving text messages to their phones advising them that their mobile number has won hundreds of thousands of Euros.

To retrieve the winnings, users have to send an email to the provided address ‘gsmn92@yahoo.com' and then pay for a courier company to deliver the winning cheque.

Notably, the courier charges add up to 700 euro.

“Obviously you can't win a lottery if you haven't bought a ticket in the first place. These guys just want you to pay for the 'courier delivery' of your 'cheque parcel'. There is no parcel. Don't fall for this scam,” Hypponen said.

mobilephonephishingsecurityvishingvoip