[13552] in cryptography@c2.net mail archive
virus attack on banks (was attack on paypal)
daemon@ATHENA.MIT.EDU (Anne & Lynn Wheeler)
Tue Jun 10 11:52:51 2003
X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
Date: Tue, 10 Jun 2003 09:19:19 -0600
To: Anne & Lynn Wheeler <lynn@garlic.com>
From: Anne & Lynn Wheeler <lynn@garlic.com>
Cc: "Dave Howe" <DaveHowe@gmx.co.uk>,
"James A. Donald" <jamesd@echeque.com>,
"Email List: Cypherpunks" <cypherpunks@lne.com>,
"Email List: Cryptography" <cryptography@metzdowd.com>
In-Reply-To: <4.2.2.20030608173129.00a99bb0@mail.earthlink.net>
At 06:12 PM 6/8/2003 -0600, Anne & Lynn Wheeler wrote:
>at a recent cybersecurity conference, somebody made the statement that (of
>the current outsider, internet exploits, approximately 1/3rd are buffer
>overflows, 1/3rd are network traffic containing virus that infects a
>machine because of automatic scripting, and 1/3 are social engineering
>(convince somebody to divulge information). As far as I know, evesdropping
>on network traffic doesn't even show as a blip on the radar screen.
virus attempting to harvest ("shared-secret", single-factor) passwords at
financial institutions
http//www.smh.com.au/articles/2003/06/10/1055010959747.html
and somewhat related:
http://www.garlic.com/~lynn/aepay11.htm#53 authentication white paper
--
Anne & Lynn Wheeler http://www.garlic.com/~lynn/
Internet trivia 20th anv http://www.garlic.com/~lynn/rfcietff.htm
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
