Slashdot Mirror
Germany Makes Arrests In Global Phishing Scam
Monkier writes "PC World reports on a sting by German police resulting in the arrest of ten people suspected of a phishing scam. The group was targeted bank customers with emails from organizations like eBay and Deutsche Telekom. The team attached software to the emails that recorded data entered into the host computers. From the article: '"This case shows that criminal organizations are using the Internet more and more to gain enormous amounts of money with a supposedly low risk of being caught," said Crime Office President Joerg Ziercke in a statement. "The authorities face constant new challenges in the fight against computer crime where perpetrators are developing a higher degree of professionalism and specialization." The office said the suspects had led luxurious lifestyles involving expensive jewelry, cars and travel.'"
Just a thought I had a few months ago - the higher the income tax rate, the bigger the incentive is for economic crime. As a stylized example;
In country A you earn 100,000, pay 25,000 in tax that covers your public health system, 25,000 in tax to cover your education system, spend 25,000 on other life essentials, and are left with 25,000 to spend as you like.
In country B you earn 100,000, pay 5,000 in tax that covers your public health system and 20,000 in further insurance, pay 5,000 in tax to cover your education system and 20,000 to cover your study costs (enjoying the benefit of 25,000 in each), spend 25,000 on life essentials and are left with 25,000 to spend as they like.
A criminal in country A who earns 100,000 will pay 0 in health tax but enjoy healthcare equal to 25,000, pay 0 in education tax but enjoy healthcare equal to 25,000 spend 25,000 on life essentials and have 75,000 to spend as they like.
A criminal in country B who earns 100,000 will pay 0 in health tax and 20,000 in private health insurance, pay 0 in education tax and 20,000 in education costs, spend 25,000 on life essentials and have 35,000 to spend as they like.
I would suspect it's for this reason that criminals in Europe (of the petty crime type) in my view appear to enjoy significantly more comfortable lives and more luxury than in the US.
The core problem is that the client system was compromised and as a result all the SSL in the world won't help. Clueless users will always be with us. It will always be the case that if you send out enough emails with plausible links, someone will click on them.
Banks should make greater use of authentication tokens like those provided by SecurID, because they offer a secure platform that is much more difficult to compromise with fishing attacks.
These problems would go away quickly if people would just educate themselves a bit and learn that the Internet is a "wretched hive of scum and villainy" and you just HAVE TO BE CAREFUL.
I don't think you're blaming the victim by stating a fact - and I think it is likely fact that a significant proportion of these crimes occur because the victim either didn't know better or didn't think it over in an adequately critical fashion.
In an offline example, I got beaten and mugged earlier this summer while walking home. I had my iPod going, was in my own little world, and wasn't paying close enough (nor paranoid enough) attention around me. In the back of my mind, I registered the presence of the assailants, but wasn't cautious enough. Was it my fault? Not by any means - the fault lies with the two bastards who jumped me and took my stuff. Would it have been avoided if I'd been more situationally aware and paranoid? Hell yeah.
Karma: Excellent, but still won't get you laid.