Phishing Exposed

Phishing Exposed provides an in-depth, high-tech view from both sides of the phishing playing field. In this unprecedented book, world-renowned phishing expert Lance James exposes the technical and financial techniques used by international clandestine phishing gangs to steal billions of dollars every year. The book is filled with technically detailed forensic examinations of real phishing scams. Armed with this invaluable intelligence, law enforcement officers, system administrators, and fraud investigators can resolve existing cases and prevent future attacks.

• Identify the Three Classes of Phishing Attacks-- Go behind the scenes to learn how phishing gangs execute impersonation, forwarding, and popup attacks.
• Uncover Phishing Servers and Blind Drops-- Follow the trail from hostile Web servers to anonymous e-mail accounts where stolen data is stored.
• Learn How E-mail Addresses Are Harvested-- See how phishers use bots and crawlers to scour the Internet for valid e-mall addresses to attack.
• Detect Cross-Site Scripting (CSS) Attacks-- Watch as phishers use CSS attacks to hijack browsers, steal cookies, and run malicious code on Web browsers.
• Exploit the Secure Sockets Layer (SSL--) Implement cross-user vulnerabilities to render SSL certificates null and void.
• Follow the Money -- Untangle the intricate web of international money laundering.
• See the Future of Phishing-- Learn how new pharming techniques use DNS poisoning to redirect online traffic to a malicious computer.
• Go Phishing -- Send phishing e-mails you have received to author Lance James for analysis.

About the Author

Lance James has been heavily involved with the information security community for the past 10 years. With over a decade of experience with programming, network security, reverse engineering, cryptography design & cryptanalysis, attacking protocols and a detailed expertise in information security, Lance provides consultation to numerous businesses ranging from small start-ups, governments, both national and international, as well as Fortune 500’s and America’s top financial institutions. He has spent the last three years devising techniques to prevent, track, and detect phishing and online fraud. He is a lead scientist with Dachb0den Laboratories, a well-known Southern California “hacker” think-tank, creator of InvisibleNet, a prominent member of the local 2600 chapter, and the Chief Scientist with Secure Science Corporation, a security software company that is busy tracking over 53 phishing groups. As a regular speaker at numerous security conferences and being a consistent source of information by various news organizations, Lance James is recognized as a major asset in the information security community.