Portal Home | IS News Menu | Portal Menu | ISB Menu | Main Content
Phishing Report
21 Apr 05:04

RSA Security has published their report for March 2006.

Segmentation of Banking Brands Attacks by Phishing

  • 49 per cent Non-US Banks
  • 23 per cent Regional US Banks
  • 17 per cent US Credit Unions
  • 11 per cent Nationwide US Banks

The most notable trend is the very significant increase in the number of non-US banks targeted by phishing in March. Most of the non-US banks that were attacked for the first time in March were German banks. Additional new Spanish and Italian banks were also targeted this month. Please note, that the majority of the phishing volume is still attributed to large US and UK banks.

Breakdown of Attack Hosting Source

  • US - 59 per cent
  • UK - 10 per cent
  • Germany - 8 per cent
  • S. Korea - 8 per cent
  • China - 4 per cent
  • France - 3 per cent
  • Russia - 3 per cent
  • Turkey - 2 per cent
  • Canada - 2 per cent
  • Sweden - 2 per cent

Today the US hosts almost 60 per cent of all phishing attacks. Two other "western" countries, the UK and Germany are number 2 and number 3 in the top-ten list. Why do fraudsters prefer hosting in western countries and not some more distant countries? Main reason: slower ISP action in taking down the phishing sites in these countries (many legal issues in the US, firm rules in Germany and the UK). Interestingly, today taking down a phishing site in China or Korea usually takes less time than taking down a site in the US.

Number of Distinct Phishing Attacks per month

  • January 2006: 3,250 attacks
  • February 2006: 3,100 attacks
  • March 2006: 3,400 attacks

The overall number of phishing attacks climbed yet again towards the 3500 attacks mark in March, after a slight decline in February. Overall, the number of attacks has been relatively stable over the past few months, with the market perhaps reaching a point of balance.

Attacked Brands by Industry Types

  • 92 per cent - Financial Services
  • 6 per cent - Online retailers
  • 1 per cent - ISPs
  • 1 per cent - Miscellaneous

The relative shares of the different segments comprising the total phishing volume remained relatively the same during March. The share of financial institutions has increased a bit, while the share of online retailers decreased. It seems that fraudsters do not see the online retail world as 'interesting' enough to attack while targeting banks is easier and more profitable.

Related links: (Open in a new window.)
External link www.rsasecurity.com/solutions/consumer_authentication/intelreport/RSA%20Cyota%20Phishing%20Intel%20Report%20-%20Mar%202006.pdf

View Printable View printable version (opens in new window)
Back Back