Security Advisor

Microsoft SIR: Phishing Sites Targeting Financial Institutions

Phishers go where the money is.

Taking another look at Microsoft's Security Intelligence Report volume 13 for the time period between January and June of 2012, when it comes to phishing Web sites, sites that target financial institutions and customers accounted for a large majority of viewed attempts.

Makes sense. Malware spreaders want to make money, and the best way to do that is to infect the PCs of those that have the most access to sensitive financial information. At its peak in January, active phishing sites targeting the financial sector accounted for more than 70 percent of all phishing sites observed by Microsoft.

While the margin is wide between it and the second-place target of social networking sites (hovered around 5 percent at the beginning of the year), Microsoft observed a dramatic spike during April for this target. It actually took the top-spot away from financial institutions with close to 70 percent of all viewed phishing attempts. This coincides for a large phishing campaign that occurred between February and May of this year.

As for the top geographic locations where these temporary malware sites originate from, the United States took the top spot. Microsoft estimates that 2.9 out of every 1,000 Internet hosts were set up for the purpose of phishing in the U.S. China claimed the second spot with .6 sites per 1,000 hosts.  

Stay tuned for more highlights and analysis from Microsoft's latest SIR.

About the Author

Chris Paoli is the site producer for Redmondmag.com and MCPmag.com.

Featured

  • Google IDs on Azure Active Directory B2B Service Now at 'General Availability'

    Microsoft announced on Wednesday that users of the Google identity and access service can use their personal log-in IDs with the Azure Active Directory B2B service to access resources as "guests."

  • Top 4 Overlooked Features of a Data Backup Strategy

    When it comes to implementing an airtight backup-and-recovery plan, these are the four must-have features that many enterprises nevertheless tend to forget.

  • Microsoft Bolsters Kubernetes with Azure Confidential Computing

    Microsoft on Tuesday announced various developments concerning the use of Kubernetes, an open source container orchestration solution fostered by Google.

  • Windows Will Have Support for Encrypted DNS

    Microsoft announced this week that the Windows operating system already has support for an encrypted Domain Name System option that promises to add greater privacy protections for Internet connections.

comments powered by Disqus

Office 365 Watch

Sign up for our newsletter.

Terms and Privacy Policy consent

I agree to this site's Privacy Policy.