Consumer awareness of phishing attacks has doubled between 2007 and 2009, and more consumers are now wary of these attacks, a new survey said.

The survey also said the number of consumers who reported falling prey to this attack increased six times during that same period of time, according to RSA, the security division of tech firm EMC.

RSA, which conducted the survey, said in addition, while hundreds of thousands of people join social networking websites each day, the survey found that nearly two in three (65 percent) people who belong to these online communities indicated they are less likely to interact or share information due to their growing security concerns.

RSA said it polled more than 4,500 consumers regarding their awareness of online threats, concerns with the safety of their personal information online and their willingness to share it, and desire for better identity protection.

Social networking websites have become a hotbed for online criminals because of their global reach and the participation by hundreds of millions of active users from all walks of life, RSA said.

This makes these communities prime targets for exploitation by criminals who seek to steal personal information through socially engineered attacks.

Reflective of this trend, the survey also said that four out of five (81 percent) people using social networking websites displayed concern with the safety of their personal information online.

“Fraudsters continue to fine-tune their array of tactics that result in millions of computers becoming infected with Trojans and other malware,” said Christopher Young, senior vice president at RSA.
“These online criminals are adept at social engineering with at-the-ready phishing attacks that are launched within moments of breaking news about popular celebrities, professional athletes or serious global events.

The executive further said in these cases, “people are lured to legitimate websites infected with malware as well as complete fakes designed to look like well-known news sources.”

“Trojans can easily be masked as ‘required’ updates to a media player which can result in countless computers becoming infected with malware. While it’s difficult to prevent consumers from visiting these websites, we can do a better job of protecting those who do,” Young added.

The survey further said consumers more aware of phishing threats, but new attack methods dupe six times as many in just two years.

In the 2007 RSA survey, one in three (38 percent) consumers reported they were aware of the threat of a phishing attack – and this figure doubled in two years where three in four (76 percent) have become aware. Additionally, nine in ten consumers (89 percent) reported concerns caused by the threat of phishing.

Despite increased awareness, there have been a growing number of online users that have fallen victim to a phishing attack. In the 2007 RSA survey, only one in twenty (5 percent) consumers cited they had fallen victim to a phishing scam – and this rate increased six-times in 2009 to represent three in ten (29 percent) consumers.

This increase can be attributed to more advanced communications tactics and greater sophistication such as improved writing and web design skills on the part of the fraudsters. Phishing attacks have also evolved in an attempt to exploit users in different ways and through a broader variety of methods including offshoots known as “vishing”, “smishing” and “spear phishing.”

The sheer volume of phishing attacks launched in recent months is also contributing to these trends, the RSA said.

An increase in consumer knowledge of online threats is further evident from the growth in the number of respondents that expressed awareness of Trojans.

In 2007, 63 percent of consumers stated that they were aware of Trojans and in 2009 that figure climbed to 81 percent. Consumers’ safety concerns translate to significant eagerness for better identity protection.

Online banking continues to provide significant levels of convenience for consumers, with quick access to checking and savings accounts, the ability to pay bills automatically, transfer funds and perform other financial transactions.

There is dramatic adoption on the use of social networks in which people use to form and nurture personal and professional relationships with each other. Finally, healthcare organizations as well as local, state and federal government agencies are bringing the power and convenience of online services to the consumer – offering access to personal healthcare records, driver’s license renewals and payment of tax bills.