Phishing and Tabnapping

Many of us have heard about phishing where a user is shown a web page that looks like a known/trusted one but is in fact not. Thus fraudsters can gain login information from unsuspecting users. Now there is an advancement (if I can say so) in the sophistication of such attacks. A researcher has recently done something called tabnapping where a malicious tab impersonates an open genuine tab (just in case there is someone not aware of what a tab is - today all browsers, I think, allow the user to open multiple web pages within one single window, each web page opens in a separate tab).

For more information refer to this.

Vishing

Apparently there is this new form of defrauding people and it is called vishing. The word is a portmanteau word formed by combining 'voice' and 'phishing'. In phishing, a fraudster can create an email id or a website that seems to be legitimate while it is not. Do a similar thing over a phone and you call it vishing. Sounds like such an innocuous word! Here is more on this.

http://news.zdnet.com/2100-9595_22-303175.html