'Make your own man-in-the-middle attack' online kit found

Fraudsters are hawking free trials of “universal”
man-in-the-middle phishing kits through an online forum, security
researchers said today.

RSA's Anti-Fraud
Command Center (AFCC) discovered an internet forum populated by
fraudsters that is offering a set of tools to create a
man-in-the-middle scheme, according to a company news release.

The kit allows would-be attackers to create a bogus URL that
communicates with both the end user and the legitimate website in real
time, the release said. The scammer must first dupe the user into
visiting the spoofed site.

These so-called universal phishing kits allow users to configure
their attacks to take advantage of any target website, according to the

Script Kiddies are moving into Phishing.  Great.  From SC Magazine.


Author: Xavier Ashe

Entrepreneur, Infosec Executive, CISSP, CISM, Ironman triathlete, traveler, UU, paleo, father of 8, goyishe, gamer, & geek. http://linkedin.com/in/xavierashe

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )


Connecting to %s