The Weekly Top 3 are the three most relevant news stories for the week that are related to phishing scams and activities reported in the media, security blogs and security magazines on the Internet. This week, we look at phishing activities related to St. Joseph's Healthcare, ICICI Bank and the IRS.
The St. Joseph Healthcare system in New Jersey, U.S.A. announced earlier this week that employee information of more than 5,000 employees was possibly stolen as the result of a phishing scam. The Vice Presedent of External Affairs stated that patient and medical data were not compromised because their internal systems were not breached. However, the names and social security numbers of the affected employees were accessed. There was not much detail surrounding the scam, but the vice president did state that it involved a named company executive using an internal e-mail. Click the link below to read more.
http://healthitsecurity.com/news/phishing-scam-leaks-employee-information-at-nj-facility
Customers of ICICI Bank were recently the target of a phishing scam this week, as reported by Comodo Anti-Spam Labs. The phishing scam involved an e-mail that appeared to come from the Bank. In the e-mail the recipient was asked to update their banking details, which the scammer claimed was mandatory. The phishing e-mail contained a link, which forwarded the victim to a fake webpage. This webpage requested the victim's details including user ID, password, mobile number and debit card information. Click the link below to read more.
https://hacked.com/phishing-malware-strikes-one-largest-private-banks-india/
In the USA, tax season is approaching and Americans are getting ready to file their taxes. However, the IRS has reported that there is a substantial increase in tax related phishing scams. The phishing e-mails involved in these scams, try to obtain personal and other financial information from their victims. The stolen information is used by the scammers to file bogus tax returns so as to steal money from the IRS. In some instances the e-mails contained links that forwarded their victims to fake IRS webpages, where hackers would steal their victim's social security number and even taxpayer number. Click the link below to read more.