Phishing campaign targets cPanel usersDecember 7, 2009 – 7:04 PM
Trusteer warned the customers of website hosting companies, including yahoo.com, against a new phishing attack aimed at stealing their content management system log-in credentials. The e-mails appear to be from a website hosting firm and ask website owners to confirm their cPanel/FTP account information. Using this information, criminals are uploading look-a-like bank website pages to steal funds.
cPanel is a popular CMS (Content Management System), used by many leading hosting providers, including Yahoo. It is used to perform website operations, including FTP account control and setup, which can be used to upload content to the cPanel-managed web site. Over the past few days, a phishing email campaign targeting owners of cPanel-based sites at various hosting providers has surfaced.
The attack is designed to harvest the FTP credentials of site owners, using cPanel-oriented messaging.