Media releases are provided as is by companies and have not been edited or checked for accuracy. Any queries should be directed to the company itself.

‘Live Phishing’ Experiment Gets Consumers Hook, Line, and Sinker

  • 08 November, 2005 11:09

<p>How likely are you to be wooed into a false sense of security by a friendly face or the promise of a cash prize? Armed with clipboards, pencils and matching I LOVE NY shirts, a team of surveyors recently set up shop in New York’s Central Park on behalf of RSA Security to find out how much personal information consumers would give up while participating in a survey supposedly about tourism in the city.</p>
<p>The situation was deliberately constructed to feel official and safe, much as online phishing attacks try to convince customers of their legitimacy with real logos and industry terminology. In this experiment, the questions were aimed at uncovering the type of ‘innocent’ information – mother’s maiden name, favorite sports team, date of birth – that people commonly use as passwords but do not generally think they need to protect.</p>
<p>The survey revealed that most consumers freely give up personal data that can be used to guess their account passwords or to steal their identity outright. Four key findings demonstrate that the vigilance that should be used to protect computer passwords is worryingly absent in spite of current threats:</p>
<p>• More than 70% of respondents gave up their mother's maiden name
• More than 90% of people provided both their date and place of birth
• Nearly 55% explained how they devise their online passwords
• Nearly 85% of respondents provided their full name, current street address, and email address</p>
<p>A small number of survey takers declined to answer a question asking how they devised their passwords, stating that this request was “too personal” or that they “don’t give out that information.” The same people, however, had no problem handing over their date of birth and mother’s maiden name, which suggests consumers often aren’t aware of ‘back doors’ into their accounts.</p>
<p>“A lot of personal information actually functions like a password and, as such, needs to be robustly protected,” commented Chris Young, vice president of consumer authentication services at RSA Security. “Many consumers have called their credit card company to check their account and been asked for their mother’s maiden name as a personal identifier. On top of this, with a bit of sleuthing, motivated phishers can guess what a New Yorker’s password is just by having his address and trying combinations that assume he’s a fan of the Yankees or the Knicks. Our survey reminds us that we all need to be more aware of such vulnerabilities, and take appropriate precautions.”</p>
<p>Recent research from the Federal Trade Commission notes that damage and loss resulting from ID theft and cyber-crime among American adults have increased to nearly $50 billion annually . Attackers are continually finding new ways to dig up personal data. Consumers are advised to take the following steps to keep their private accounts and identity secure:</p>
<p>• Do not share your password – or your method for devising your password – with anyone
• Be prudent with personal details including your mother's maiden name, place of birth and date of birth (these details can be used as passwords or as inspiration for passwords)
• Use a variety of passwords – not a universal one for all of your accounts
• Check to see if your online service providers (banks, ISPs, auction sites) offer security products that provide more robust protection against unauthorised access to your account</p>
<p>Survey Description and Methodology</p>
<p>The RSA Security Life Questions survey was conducted in New York City between August 24 and September 6, 2005. Questions ranged from essentially harmless “Is this your first visit to New York City?” to more sensitive requests such as the participant’s date and place of birth, mother’s maiden name, children’s names, pet’s name, favorite sports team, their methodology for creating passwords, full mailing address and more. 108 respondents took part and completed the 18-question in-person survey. Consumers who declined participation were not included in the final analysis of survey respondents. All of the gathered data was returned to respondents immediately.</p>
<p>About RSA Security Inc.</p>
<p>RSA Security Inc. is the expert in protecting online identities and digital assets. The inventor of core security technologies for the Internet, the company leads the way in strong authentication and encryption, bringing trust to millions of user identities and the transactions that they perform. RSA Security’s portfolio of award-winning identity &amp; access management solutions helps businesses to establish who’s who online – and what they can do.</p>
<p>With a strong reputation built on a 20-year history of ingenuity, leadership and proven technologies, we serve approximately 19,000 customers around the globe and interoperate with more than 1,000 technology and integration partners. For more information, please visit www.rsasecurity.com</p>
<p>RSA Security is a registered trademarks or trademarks of RSA Security Inc. in the United States and/or other countries. All other products and services mentioned are trademarks of their respective companies.
FTC, Federal Trade Commission–Identity Theft Survey Report, (2003).</p>
<p>Media Contact:
John Back
Kinetics Pty Ltd
+61 2 9976 6611
john@kinetics.com.au</p>

Most Popular

Cool Tech

Toys for Boys

Family Friendly

Stocking Stuffer

SmartLens - Clip on Phone Camera Lens Set of 3

Learn more >

Christmas Gift Guide

Click for more ›

Brand Post

Most Popular Reviews

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

Latest Articles

Resources

PCW Evaluation Team

Aysha Strobbe

Microsoft Office 365/HP Spectre x360

Microsoft Office continues to make a student’s life that little bit easier by offering reliable, easy to use, time-saving functionality, while continuing to develop new features that further enhance what is already a formidable collection of applications

Michael Hargreaves

Microsoft Office 365/Dell XPS 15 2-in-1

I’d recommend a Dell XPS 15 2-in-1 and the new Windows 10 to anyone who needs to get serious work done (before you kick back on your couch with your favourite Netflix show.)

Maryellen Rose George

Brother PT-P750W

It’s useful for office tasks as well as pragmatic labelling of equipment and storage – just don’t get too excited and label everything in sight!

Cathy Giles

Brother MFC-L8900CDW

The Brother MFC-L8900CDW is an absolute stand out. I struggle to fault it.

Luke Hill

MSI GT75 TITAN

I need power and lots of it. As a Front End Web developer anything less just won’t cut it which is why the MSI GT75 is an outstanding laptop for me. It’s a sleek and futuristic looking, high quality, beast that has a touch of sci-fi flare about it.

Emily Tyson

MSI GE63 Raider

If you’re looking to invest in your next work horse laptop for work or home use, you can’t go wrong with the MSI GE63.

Featured Content

Product Launch Showcase

Don’t have an account? Sign up here

Don't have an account? Sign up now

Forgot password?