Fraud Introduces New Terms

hon•ey•pots Closely monitored network decoys designed to distract adversaries from more valuable machines on a network. They can provide early warning about new attack and exploitation trends and they allow in-depth examination of attacks.

key•stroke log•ger A software program that enables one Internet user to monitor the actual keystrokes of another Internet user.

phish•ing A process by which fraudsters are able to replicate the "look and feel" of a legitimate financial services company's e-mail or Web site for the purposes of tricking customers into divulging personal identification, passwords and financial data.

shoul•der surf•ing Stealing a computer password or access code by peeking over a person's shoulder while he types in the characters.

skimm•ing The copying by a dishonest cashier of the data on a magnetic stripe on a customer's credit card by swiping it through a small card reader. The information is then used to make counterfeit cards.

sniff•ing The watching, displaying and logging of another Internet user's computer traffic.

spoof•ing The forging of an e-mail header to make it appear as if it came from someone or some-where other than the actual source.

syn•thet•ic iden•ti•ty A false identity made up of stolen components.

tro•jan hors•es Programs in which malicious or harmful code is concealed or hidden inside apparently harmless programming or data, the purpose of which is to get control of the breached computer and do damage.