log inhelp

View
 

AntiPhishingTools

Anti-phishing tools - keep you off the hook

review from ClifNotes, Nov 2006, permalink _ Security Tools

 

What is phishing?

Phishers attempt to fraudulently acquire sensitive information, such as passwords and credit card details, by masquerading as a trustworthy person or business in an electronic communication. Phishing is typically carried out using email or an instant message, although phone contact has been used as well.

source: Wikipedia

 

Think you can recognize a phishing ploy?

Take this test to find out ...

The MailFrontier Phishing IQ Test

 

Who has the best anti-phishing tools?

The most recent versions of Internet Explorer and Firefox both have anti-phishing detection built in. Currently both claim their protection is the best. All you can do is laugh. See the articles here:

 

IE, Mozilla Teams Claim Anti-Phishing Crown

Firefox 2 Phishing Protection Effectiveness Testing

Study: Microsoft Anti-Phishing Uses Best Bait

 

What do I recommend?

Use the most recent versions of both Firefox and Internet Explorer and make sure the anti-phishing tools are turned on. In addition, you may want to try out one or more of the following add-ons.

 

PhishTank

  • The block page
    • SiteChecker displays a block page when you visit a URL known to PhishTank as an active, online phish. This focused page lets you view the PhishTank detail page, or even continue on to take a look.
  • Translations
    • MASA has recruited folks around the Internet so that SiteChecker comes with English, Swedish, Dutch, Chinese (simplified and traditional), Italian, Spanish, French, and Brazilian translations right away. Contact MASA (via SiteChecker site) if you want to help translate to other languages.
  • Thoughtful preferences
    • The default preferences are fine, but MASA built in some options which you might explore, including whether the extension is on or off and where the Phishy Fishy icon takes you when clicked.

 

http://www.phishtank.com/blog/category/extension/

 

Netcraft

  • Protect your savings from Phishing attacks.
  • See the hosting location and Risk Rating of every site you visit.
  • Help defend the Internet community from fraudsters.

 

The Toolbar community is effectively a giant neighbourhood watch scheme, empowering the most alert and most expert members to defend everyone within the community against phishing frauds.

 

http://toolbar.netcraft.com/

 

TrustWatch

TrustWatch Search Extension

  • Search Google, Yahoo! or MSN, see TrustWatch!
  • Utility to report suspicious sites and links
  • Utility to see more about a site before visiting it
  • Utility to report suspicious/fraud webmail and links

 

http://trustwatch.com/

 

SpoofStick

SpoofStick is a simple browser extension that helps users detect spoofed (fake) websites. SpoofStick makes it easier to spot a spoofed website by prominently displaying only the most relevant domain information. It's not a comprehensive solution, but it's a good start.

 

http://www.spoofstick.com/

 

Any more anti-phishing tools you'd like to recommend?

Printable version