Phishers turn their aim on corporate networks
Organised crime gangs are developing phishing attacks against corporate networks in an attempt to steal passwords and sensitive information.
Some fraudulent emails pretend to be messages from a company's network administrator asking its users to update their passwords. But unwary users clicking on the link in the fake email may be giving their login details to fraudsters, who are then free to use them to access business systems.
And Anne Bonaparte, chief executive of email security company MailFrontier, said that gangs are using sophisticated directory harvest attacks to identify new employees in businesses.
The phishers then pose as payroll providers and try to use the information they have harvested to get yet more personal details from a company's HR department.
"This is a very sophisticated corporate phish - we are beginning to collect some very serious ones. As these phishers get more sophisticated this is the way it is going. There is a lot of money to be had here," said Bonaparte.