March 11, 2005 - (HOSTSEARCH.COM) – Web security watchdog NetCraft recently published an article on corporate irresponsibility in the banking industry in the wake of the LexisNexis and Bank of America data base hacks. The site reported that many large banks are guilty of poor development and testing practices in creating their online banking sites and software which leaves them vulnerable to phishing attacks.
One fraud recently blocked by the Netcraft Toolbar was at Citizens Bank. Fraudsters composed and mass mailed a phishing mail which exploited a program on CitizensBank.com, loading Javascript from the attackers' server hosted at Telecom Italia. Customers were presented with a page bearing the CitizensBank.com URL in the address bar, while the browser window displays a form from the Telecom Italia server asking for user login information.
