New Security Threat: 'SMiShing' - InformationWeek

InformationWeek is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

IoT
IoT
News

New Security Threat: 'SMiShing'

McAfee's Avert Labs is warning of a new threat from hackers: phishing via SMS.

Consumers, corporate end users and security-focused solution providers have two more reasons to be overwhelmed this week.

First, on Tuesday, AT&T said a weekend hacker attack had compromised the personal data -- including credit-card information -- of as many as 19,000 of its customers. The ones most likely affected had purchased DSL equipment through AT&T's online store. AT&T officials discovered the attacks within hours, shut down the online store and notified the relevant credit-card companies, but not before the attackers were able to make off with at least some critical data. "Targeted attacks like this one are much more likely to be successful because the hacker is studying a company's defense, looking for a way in," says Minoo Hamilton, senior security researcher for nCircle, a network security firm, adding that such attacks are likely to increase until companies change their security strategies.

Along with good old-fashioned theft, as of this week, IT users have a new type of threat to worry about: McAfee's Avert Labs released a statement that identifies "SMiShing (phishing via SMS) as the newest data collection tactic. Evidently, some mobile phone users have been receiving SMS messages that say, "We're confirming you've signed up for our dating service. You will be charged $2/day unless you cancel your order: www.smishinglink.com."

Avert Labs researchers say the new attacks are "yet another indicator that cell phones and mobile devices are becoming increasingly used by perpetrators of malware, viruses and scams."

We welcome your comments on this topic on our social media channels, or [contact us directly] with questions about the site.
Comment  | 
Print  | 
More Insights
2019 State of DevOps
2019 State of DevOps
DevOps is needed in today's business environment, where improved application security is essential and users demand more applications, services, and features fast. We sought to see where DevOps adoption and deployment stand, this report summarizes our survey findings. Find out what the survey revealed today.
Commentary
Will AI and Machine Learning Break Cloud Architectures?
Lisa Morgan, Freelance Writer,  6/10/2019
Slideshows
9 Steps Toward Ethical AI
Cynthia Harvey, Freelance Journalist, InformationWeek,  5/15/2019
Commentary
Humans' Fascination with Artificial General Intelligence
Guest Commentary, Guest Commentary,  6/6/2019
Register for InformationWeek Newsletters
Video
Current Issue
A New World of IT Management in 2019
This IT Trend Report highlights how several years of developments in technology and business strategies have led to a subsequent wave of changes in the role of an IT organization, how CIOs and other IT leaders approach management, in addition to the jobs of many IT professionals up and down the org chart.
White Papers
Slideshows
Twitter Feed
Sponsored Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.
Sponsored Video
Flash Poll