Phishers Attack Online Payment Site ClickandBuy

Abigail Villarin, Fraud Analyst at security firm Trend Micro, said in a blog post made on September 16, 2009 on TrendLabs malware blog that the analysts at the TrendLabs have recently detected a phishing scam targeting ClickandBuy, a London-based competitor to eBay, which offers both billing and payment solutions to its customers.

Villarin explicitly explained in the blog post that phishers have designed a duplicate of the genuine German language ClickandBuy login page on a malicious website for sure.

After users enter their credentials, they would be redirected to the fraudulent ClickandBuy website. Unsuspecting users would then believe that everything is genuine, without getting even a slightest clue of being fooled.
Security experts at the Trend Micro Lab analyzed that the phishing site very closely resembles the legitimate website, indicating that phishers have very strategically designed the spoof site that there is not even a slightest chance of its being identified.

Users are hence recommended to be vigilant while entering their login details, so as to evade such phishing attacks. For instance, connection to the genuine site was encrypted while that to the fake site was not. This is a clear difference that can save an aware user from falling into the phishing trap.

In the meantime, ClickandBuy through its authentic website clickandbuy.com informs users about phishing. It also states that the original website would never ask its customers to provide their login credentials.

It recommends its users to enter their login details only on the homepage of the Company that is www.clickandbuy.com/UK/en/.

It also suggests its subscribers that for security reasons, they should enter the URL of the website's homepage, www.clickandbuy.com/UK/en/, directly on the Internet browser. The Company also asks the customers that while making online payment, they should make sure that they are always connected to its billing server via safe and secure methods.

Meanwhile, it must be noted that websites like ClickandBuy, eBay, and PayPal are the most common targets for phishers due to their extensive consumer-base. These websites are time and again targeted by phishers with all the possible and latest phishing techniques.

Related article: Phishers Expand Their Sphere of Attacks

» SPAMfighter News - 10/8/2009