Rock Phish

Rock Phish

Rock Phish is also referred to as Rock Phish Kit. Authorities differ over its precise definition and about what sort of entity it is.cite web |url=http://www.complianceandprivacy.com/News-Verisign-R-Ph-commentary.asp |title=What is Rock Phish? And why is it important to know? |accessdate=2006-12-15 |author=Compliance and Privacy |authorlink= |coauthors= |date=2006-12-15 |year= |month= |format= |work= |publisher=Compliance and Privacy |pages= |language= |archiveurl= |archivedate= |quote=Rock Phish is an individual or group of actors likely working out of Romania and nearby countries in the region. This group has been in operation since 2004 and is responsible for innovation in both spam and phishing attacks to date, such as pioneering image-spam (Ken Dunham, VeriSign) ] cite web|url=http://www.infoworld.com/article/06/12/12/HNrockphish_1.html|title='Rock Phish' blamed for surge in phishing |accessdate=2006-12-13 |author=Robert McMillan |authorlink= |coauthors= |date=2006-12-12 |year= |month= |format= |work= |publisher=InfoWorld |pages=2 |language= |archiveurl= |archivedate= |quote=The first thing you need to know about Rock Phish is that nobody knows exactly who, or what, they are. ] The common information is that it is either a hacker or group of hackers, or a phishing tool kit, or that the same name is used for each.

Rock Phish Kit

"Rock Phish" is a phishing toolkit that made its way into the hacking community around November of 2005. Currently the most popular phishing kit, Rock Phish allows nontechnical individuals to create and carry out phishing attacks.cite web|url=http://www.security.iia.net.au/news/220.html|title=Malware Review |accessdate=2006-12-13 |author= |authorlink= |coauthors= |date= |year=2006 |month=03 |format= |work= |publisher=Internet Industry Association |pages= |language= |archiveurl= |archivedate= |quote=The so-called 'rock-phish' kit saves Phishers space and time: One single 'physical' site with multiple DNS names now holds a multitude of Phishing pages, covering a broad range of different banks.] DNS names to host a variety of phishing webpages, covering several banks and companies.

These kits are easily identified by the pattern in their URL: URL: http://{domain name}/r1/{letter}Where the letter is some combination that attempts to fool the user. Usually the first letter of the bank or company is in the letter of the URL.

Rock Phish Usage

F-Secure has created videos of the Rock Phish Kit in action on [http://www.f-secure.com/weblog/archives/archive-042007.html#00001168 their blog] .

Rock Phish

Robert McMillan disputes the definition above, saying that "security experts" call such a description inaccurate. He says "Rock Phish" is defined as a hacker or group of hackers stated to be behind "one-half of the phishing attacks being carried out these days." Because of the elusive nature of Rock Phish, the article reports Symantec as comparing it with the movie character Keyser Söze. VeriSign reports them as a group of Romanian origin.In the April 2007 edition of PC World, in an article entitled "Online Criminals are Thriving even in the face of New Automated Defenses" calls "Rock Phish" "a single phishing gang". This report that calls them the Rock Phish gang comes from a research firm known as Gartner, supported by RSA.

Independently of what definition is used, rock phishing is often used to refer to phishing attacks with some particular features. To minimize the effects of takedown, rock phishers often update DNS records over the course of the phishing attack. Moreover, sequential spam batches often use different and unrelated URLs. In the extreme, it would be possible for phishers to use a given URL only on one particular spoofed email, sent to only one potential victim. This would severely affect the success of takedown, but would require a very large number of corrupted nodes used for serving phishing webpages. Another distinguishing aspect of rock phishing is the use of images of text instead of text -- this complicates spam filtering, given that optical character recognition (OCR) is farily slow, and seldomly used in spam filters.

An excellent account of rock phishing tactics [cite web
title=Examining the Impact of Website Take-down on Phishing.
work=APWG eCrime Researcher's Summit, ACM Press, pp. 1–13
author = Tyler Moore and Richard Clayton.
url=http://www.ecrimeresearch.org/2007/proceedings/p1_moore.pdf
accessdate=October 28| accessyear=2007
] was presented at APWG eCrime '07.

BCS OutLook

In simple terms a Rock phish requires ownership of multiples of domain names, which are normally nonsensical, e.g. dio666.org. These are then constructed into spam email which creates the look and feel of a genuine communication. Underlying the Rock phish attack is the use of wildcard DNS, which is employed to resolve to variations of IP addresses, and then mapping them over to a dynamic gathering of compromised machines. [BCS March 2008 http://www.bcs.org/server.php?show=ConWebDoc.17968 ]

References


Wikimedia Foundation. 2010.

Игры ⚽ Нужно сделать НИР?

Look at other dictionaries:

  • Phish — jouant à l American Airlines Arena de Miami, Floride le 30 décembre 2009. De gauche à droite : Page McConnell, Trey Anastasio, Mike Gordon, Jon Fishman. Pays d’o …   Wikipédia en Français

  • Phish — Saltar a navegación, búsqueda Phish Phish actuando en Alpine Valley en East Troy, Wisconsin en julio de 2003. De izquierda a derecha: Page McConnell, Trey Anastasio, Jon Fishman, Mike Gordon. Información …   Wikipedia Español

  • Phish (álbum) — Saltar a navegación, búsqueda Phish (The White Tape) Álbum de Phish Publicación 1986, 1998 Grabación 1984 1986 …   Wikipedia Español

  • Phish discography — Phish is an American rock band most noted for jamming and improvisation. The band s four members performed together for 21 years until their breakup in August 2004.On 1 October 2008, the band announced that they would reunite for at least three… …   Wikipedia

  • Rock psicodélico — Saltar a navegación, búsqueda Rock psicodélico Orígenes musicales: Invasión Británica, Garage Rock, Folk, Raga, Folk Rock, Pop Psicodélico, Música Electronica, Jazz, Folk (E.E.U.U), Pop Barroco. Orígenes culturales …   Wikipedia Español

  • Rock Band 3 — est un jeu vidéo développé par Harmonix et MTV Games sorti le 29 octobre 2010. Il est le sixième épisode de la série Rock Band et il est sorti sur Xbox 360, PlayStation 3, Wii et Nintendo DS. Il est jouable avec la guitare, la basse, la batterie …   Wikipédia en Français

  • Rock & Roll (The Velvet Underground) — Rock Roll Chanson par The Velvet Underground extrait de l’album Loaded Enregistrement 15 avril 1970 Durée 4:40 Genre Rock and Roll Producteur Geoff Haslam, Shel Kagan and …   Wikipédia en Français

  • Phish — This article is about the band. For deceptive internet practices, see Phishing. Phish Phish performing at American Airlines Arena in Miami, FL on December 30, 2009. Left to right: Page McConnell, Trey Anastasio, Mike Gordon …   Wikipedia

  • Phish tours — American rock band Phish is one of the most successful live acts in popular music history, forging a popularity in concert far greater than their album sales, radio airplay, or music video presence would otherwise indicate. Phish tours, at the… …   Wikipedia

  • Phish festivals — Starting in 1996, American jam band Phish has hosted a series of festivals. Contents 1 The Clifford Ball 2 The Great Went 3 Lemonwheel 4 Camp Oswego …   Wikipedia

Share the article and excerpts

Direct link
Do a right-click on the link above
and select “Copy Link”