Do you ever log onto your banks website then open a new window/tab to visit other websites?
DON'T DO IT
According to Trusteer there is a new scam called IN SESSION PHISHING. To put it simply it uses java script, a compromised website, of which there are more than 2 million KNOWN compromised sites and 100's added daily and a little malware injected onto the compromised site.
The scenario might go something like this:
A pop up window appears stating your banking session has expired and asks you for your username and password...since you were just there and your the page is still open it sound legitiment and viola they have gotten your bank information = $$.
Therefore when you are visiting your bank online just do that and don't visit any other sites until you are done banking. I usually close my browser after I have logged off of my banks website.
Subscribe to:
Post Comments (Atom)
Thank you for this handy warning! Since I'm always multitasking I make this mistake, often. Now I know better :)
ReplyDelete