Products & Releases

New Phishing Tactic Hits Large Payment Processor

ChronoPay's domain name system was hacked at the end of December, according to IID's Q4 eCrime Report
TACOMA, Wash. – February 10, 2011 – IID (Internet Identity), a provider of technology and services that help organizations secure Internet presence, today released its Fourth Quarter eCrime Trends Report that revealed evidence that cyber-criminals are now using domain name system (DNS) hijackings to steal critical personal information like credit card numbers. According to IID, criminals hijacked, Russia’s largest payment processor – and one of the largest payment processors in Europe – for several hours on December 25 and 26 via DNS hijacking. By redirecting the ChronoPay domain to a bogus payment site, the attackers collected at least 800 credit card numbers from customers attempting to submit payments with ChronoPay.

“While we’ve been warning for years that DNS hijackings could result in financial disaster, we hadn’t seen such a well-planned and successful attack of this nature until this incident,” said IID President and CTO Rod Rasmussen. “With ChronoPay, our worst fears came true. Unlike the recent DNS hijackings of Twitter, Baidu and others, with ChronoPay we have confirmation that people’s vital information was stolen without them being aware of it.”

As the translator between domain names and IP addresses, DNS is the glue that holds everything together on the Internet, from keeping time to conducting transactions to transmitting messages to sharing corporate and consumer data. By hijacking these DNS translations, attackers can drive unsuspecting surfers and corporate users to malicious sites, making large parts of the ‘Net largely insecure. They can also intercept corporate e-mail, financial transactions, and other highly sensitive data and personal information.

Other detailed findings of IID’s report include:

Phishing attacks impersonating gaming companies increased 489 percent from Q4 2009 to Q4 2010.

Overall phishing attacks went up 14 percent from Q4 2009 to Q4 2010.

Phishing attacks impersonating e-commerce companies jumped over the holiday season. In all, these attacks increased 13 percent from Q3 to Q4 2010.

Sources of data and background for the IID 2010 Fourth Quarter eCrime Trends Report include IID's own security experts and some of the world’s leading security and Internet infrastructure organizations like ICANN and APWG. The report can be found in its entirety at

About IID

IID (Internet Identity) has been providing technology and services that secure the Internet presence for an organization and its extended enterprise since the company was founded in 1996. It recently started delivering the industry’s first and only solution for detecting, diagnosing and mitigating domain name system (DNS) security and configuration issues for an organization and its extended enterprise. IID also provides anti-phishing, malware and brand security solutions for many of today’s leading financial service firms, e-commerce, social networking and ISP companies, and more. The company is working hard to deliver solutions that help keep the Internet safe and trusted for businesses. IID is headquartered in Tacoma, Washington. More information can be found at

Editors' Choice
Jai Vijayan, Contributing Writer, Dark Reading
Kelly Jackson Higgins 2, Editor-in-Chief, Dark Reading