|
Just in case you’ve been out of the country for the last 12 months, a new scourge is hitting the Internet and the world of email and it’s called phishing. The Anti-Phishing Working Group defines phishing as identity theft “attacks using ‘spoofed’ e-mails and fraudulent Websites designed to fool recipients into divulging personal financial data such as credit card numbers, account usernames and passwords…”
According to various experts, the incidents of phishing are rising at an alarming rate: there were 13,000 unique phishing attacks in January alone - that’s a 42 percent surge over the previous month.
The real problem is that phishing works. Some of the sharpest folks I know have accidentally provided their personal information to a credible-looking website claiming to be eBay, Citibank, etc. In fact, 64 corporate brands were used in phishing attacks in January.
So, if you are a large, well branded company, how do you prevent this from happening to you and your customers? The bad news is that there are no obvious or easy answers. A recent article from Forbes talks about legislation that’s working its way through congress but, like CAN-SPAM, it is, at best, only a partial solution.
Fortunately, as consumers, there’s quite a bit we can do. Great email filter products like MailFrontier offer some protection. Browser plug-ins will help catch fraudulent sites by comparing URLs to known lists of bad guys. Various popular email programs are releasing new versions that will help call out and prevent some of the more popular tricks being used by phishers today.
The bad news is that, as senders, there’s not as much you can do.
Here’s a quick list of ideas I’ve compiled from various sources on the topic:
Have the phishers invented any new tricks that we should all be aware of? Are there better solutions emerging? Please post your thoughts and/or suggestions.
Sponsored byCSC
Sponsored byIPv4.Global
Sponsored byWhoisXML API
Sponsored byDNIB.com
Sponsored byVerisign
Sponsored byVerisign
Sponsored byRadix
Hi,
I heard the latest threat is from trojan horses that modify cached bank web sites so that users are sent to fake sites.
Yours,
Gazza11.