Over the past 12 months, the way people use the Internet and their computers has evolved significantly. And, computer security experts warn, cyber criminals have changed their tactics accordingly.
"It really speaks to a Web 2.0 world. People communicate differently today, people transact and pay their bills differently today, and that drives today's criminals," said David Marcus, director of security research and communications for McAfee Labs, which this week released its 2010 Threat Predictions report. "Bad guys tend to go where the masses go."
Not only has the volume of threats escalated dramatically, but the delivery methods have become more sophisticated, he said.
Cyber criminals increasingly leverage the news of the day to attack unsuspecting consumers. Celebrity deaths, natural disasters, you name it -- Marcus said tech-savvy criminals will find a way to conceal their malware in the headlines you want to read and the bits of conversation you're already having.
Although consumers know to be wary of Web links sent by strangers, they tend to trust Web links and e-mail messages sent by friends and family.
But online attackers are learning how to exploit that trust, by delivering malware that appears to come from Facebook friends, Twitter followers and friends' e-mail accounts.
"When you consider there are 350 million users of Facebook, that's a pretty target-rich environment," said Marcus. Though Twitter has a smaller population, he said because of the site's trust relationships, it too will be targeted.
McAfee also warns that URL shorteners, like those used to accommodate Twitter's 140-character limit, make the cyber criminal's task even easier.
Unlike many typical Web addresses that show Internet users the name of the site they're about visit, shorter URLs tend to display a string of letters and numbers that seem to have no rhyme or reason. For example, instead of showing a user "http://bankofamerica.com" or "http://abcnews.com," abbreviated URLs might display only "http://bit.ly/XpEwA" or "http://bit.ly/15OAyP."
As another Internet security firm Symantec said in its recent report on 2010 threats, URL shortening services will "become the phisher's best friend."
"Because users often have no idea where a shortened URL is actually sending them, phishers are able to disguise links that the average security conscious user might think twice about clicking on," the company said.
As consumers continue to bank online, Marcus said attacks on financial sites will likely increase in 2010.
Even though banks have upped online security with extra features to authenticate users, cyber thieves have become smarter. Some criminals have already learned how to bypass the banks' second layer of protection.