Phishing on social networks on the rise: Microsoft

13 May 2011

Cyber criminals are increasingly using social networks to carry out phishing (stealing personal data through fake websites, promotions) attacks on unsuspecting users, according to a Microsoft security report released on Thursday. 

''These venues have become lucrative hot beds for criminal activity,'' said Microsoft.

Phishing through social networking sites alone increased 1200 per cent between July and December 2010, reported the company.

Sanjay Bahl, chief security officer, Microsoft India, said, ''Social networking is on a high and these sites have created new opportunities for cybercriminals to not only directly impact users, but also friends, colleagues and family through impersonation.''

The techniques employed by cyber crooks include legitimate looking marketing campaigns, product promotions, pay per click schemes or fake security software products that trick users into downloading malicious content or parting with personal information.

 ''It's becoming increasingly difficult for consumers to decipher legitimate communications and promotions given the sophistication of tools criminals are using,'' said Graham Titterington, principal analyst, Ovum.

According to Mircosoft's Security Intelligence Report, phishing through social networks increased from a low of 8.3 percent of all phishing in January to a high of 84.5 percent in December 2010, largely due to the detection of new adware families.