The holiday buying season is likely to generate a wave of phishing attacks in January 2008, according to seasonal data collected by SonicWALL, Inc.

In previous years these surges in phishing and other online fraud attempts coincided with the arrival of December's credit card bills in the second and third weeks of January, and the traditional precursor patterns are even more pronounced this year says, says Andrew Klein, director of Email Security at SonicWALL.

"Phishers are getting better all the time at optimizing the relevancy factor of their attacks -analyzing human behaviors and interposing themselves credibly at the right moment to maximize their chances of successful fraud," said Klein. "In the November to December gift-giving season, individuals who normally make only a few credit card purchases a month are suddenly doing multiple transactions. Not only is there a large volume, but people use different financial instruments and it's just not easy to remember everything that they've bought, and how they paid for it. When people are uncertain they are vulnerable to trickery, which cyber criminals are counting on."

To prepare for the attacks, scammers use November and December to gather email addresses of potential victims in January. While traditional spam has increased slightly in Q4 of 2007, the real increase is in Directory Harvest Attacks used to discover email addresses - these attacks have nearly doubled from Q3 to Q4 of 2007. With the tremendous increase in Directory Harvest Attacks, the volume of junk email - spam, virus, fraud, directory harvest, and denial of service email - is now at a higher level than ever, running at almost 97% of all email traffic according to SonicWALL statistics.