Seriously Fishy For Your Website
Skip | 17 February, 2005 17:38
Currently, phishing is only hitting larger companies. Most of those victims tend to be lumbering, slumbering companies. Slow to move and react with plenty of internal politics and such. I know as I ran a large IT organization a few years back before going on my own.
However, the emergence of profitability of phishing - the act of defrauding consumers through false websites and emails - is now moving to two different levels.
First is smaller brands. Yes, second and third tier websites are now being phished. The second big development in this arena is new automated tools that are selling on the web to do turnkey phishing scripts, emails, fake websites to take your banking or credit card data, etc.
Below is a copy of an article from Newsfactor. It tells of a website that is funded by the big tech players such as Microsoft. It's a good read and there's a link to the new website. We're in the early days of phishing and this problem will eventually become like spam is today - ubiquitous.
If you do any type of ecommerce you MUST inform your visitors in every way possible that you would never send them an email asking for updates to their personal data. You need ot put that in your privacy statements, near your order buttons and in your email correspondence. Educate your customers.
It is the unknowing of us who fall for these silly, but effective frauds. Education is what needs to happen. Tell all your friends about phishing, or send them or link to this article and make sure they read it.
Here's the article:
__________________
Industry Heavyweights Launch Phish Report Network
Elizabeth Millard, www.newsfactor.com
Microsoft (Nasdaq: MSFT), eBay (Nasdaq: EBAY), and Visa International have banded together in an attempt to combat phishing attacks.
http://www.phishreport.net/
The industry heavyweights have noted that they will participate in the Phish Report Network, an anti-phishing aggregation service introduced by endpoint security firm WholeSecurity.
The initiative allows a company that has been subject to a phishing attack to report suspect and fraudulent Web sites immediately to a central database. WholeSecurity will be tasked with maintaining the database and disseminating the information.
Companies subscribing to the Phish Report Network can access the database or receive notifications of known phishing sites.
Report Card
Unlike some non-profit services that collect phishing information, the Phish Report Network is a subscriber-based service that WholeSecurity claims is the first worldwide anti-phishing aggregation service in the Internet industry.
Security vendors or software makers can used the service to incorporate new fraud protection features into their products, WholeSecurity noted.
The service was unveiled at the opening of the RSA Conference in San Francisco.
Big Players
Having Visa's involvement in the Phish Report Network is especially important, since the company is the hardest hit with phishing attacks, according to the Anti-Phishing Working Group (APWG).
The participation of eBay and PayPal (Nasdaq: PYPL - news) is also important, notes Howard Schmidt, eBay and PayPal's chief security strategist, in a statement.
"As we co-develop technologies, educate online users and work with law enforcement, we can help significantly reduce the effect of cyber criminals," says Schmidt.
Going Phishing
Developing higher-powered anti-phishing tools and having industry leaders collaborate on the problem is vital, said Dave Jevans, APWG chairman.
The organization released a report in late 2004 that showed disturbing trends in phishing activity, including the increasing use of automation and more potency in fraud campaigns. The group noted that phishing has been getting more and more serious over time.
"User education is important, but the problem needs to be tackled by the industry as well," Jevans told NewsFactor.
With the ongoing efforts of the APWG and the potential of the Phish Report Network, the hope is that phishing at least will be lessened. "Having so many people looking at this problem is an indication that the industry is fighting as hard as it can," Jevans said.
However, the emergence of profitability of phishing - the act of defrauding consumers through false websites and emails - is now moving to two different levels.
First is smaller brands. Yes, second and third tier websites are now being phished. The second big development in this arena is new automated tools that are selling on the web to do turnkey phishing scripts, emails, fake websites to take your banking or credit card data, etc.
Below is a copy of an article from Newsfactor. It tells of a website that is funded by the big tech players such as Microsoft. It's a good read and there's a link to the new website. We're in the early days of phishing and this problem will eventually become like spam is today - ubiquitous.
If you do any type of ecommerce you MUST inform your visitors in every way possible that you would never send them an email asking for updates to their personal data. You need ot put that in your privacy statements, near your order buttons and in your email correspondence. Educate your customers.
It is the unknowing of us who fall for these silly, but effective frauds. Education is what needs to happen. Tell all your friends about phishing, or send them or link to this article and make sure they read it.
Here's the article:
__________________
Industry Heavyweights Launch Phish Report Network
Elizabeth Millard, www.newsfactor.com
Microsoft (Nasdaq: MSFT), eBay (Nasdaq: EBAY), and Visa International have banded together in an attempt to combat phishing attacks.
http://www.phishreport.net/
The industry heavyweights have noted that they will participate in the Phish Report Network, an anti-phishing aggregation service introduced by endpoint security firm WholeSecurity.
The initiative allows a company that has been subject to a phishing attack to report suspect and fraudulent Web sites immediately to a central database. WholeSecurity will be tasked with maintaining the database and disseminating the information.
Companies subscribing to the Phish Report Network can access the database or receive notifications of known phishing sites.
Report Card
Unlike some non-profit services that collect phishing information, the Phish Report Network is a subscriber-based service that WholeSecurity claims is the first worldwide anti-phishing aggregation service in the Internet industry.
Security vendors or software makers can used the service to incorporate new fraud protection features into their products, WholeSecurity noted.
The service was unveiled at the opening of the RSA Conference in San Francisco.
Big Players
Having Visa's involvement in the Phish Report Network is especially important, since the company is the hardest hit with phishing attacks, according to the Anti-Phishing Working Group (APWG).
The participation of eBay and PayPal (Nasdaq: PYPL - news) is also important, notes Howard Schmidt, eBay and PayPal's chief security strategist, in a statement.
"As we co-develop technologies, educate online users and work with law enforcement, we can help significantly reduce the effect of cyber criminals," says Schmidt.
Going Phishing
Developing higher-powered anti-phishing tools and having industry leaders collaborate on the problem is vital, said Dave Jevans, APWG chairman.
The organization released a report in late 2004 that showed disturbing trends in phishing activity, including the increasing use of automation and more potency in fraud campaigns. The group noted that phishing has been getting more and more serious over time.
"User education is important, but the problem needs to be tackled by the industry as well," Jevans told NewsFactor.
With the ongoing efforts of the APWG and the potential of the Phish Report Network, the hope is that phishing at least will be lessened. "Having so many people looking at this problem is an indication that the industry is fighting as hard as it can," Jevans said.
Comments for post
Menu
calendar
| « | December 2008 | » | ||||
|---|---|---|---|---|---|---|
| Su | Mo | Tu | We | Th | Fr | Sa |
| 1 | 2 | 3 | 4 | 5 | 6 | |
| 7 | 8 | 9 | 10 | 11 | 12 | 13 |
| 14 | 15 | 16 | 17 | 18 | 19 | 20 |
| 21 | 22 | 23 | 24 | 25 | 26 | 27 |
| 28 | 29 | 30 | 31 | |||
RSS Feed