republican-creole
Search:  

 
theme to black backgroundlet page decide theme
HomeFind ServiceReviewsISP NewsFAQsForumsToolsDatabaseAbout 
 
   All ForumsHot TopicsGallery






how-to block ads


 
Forums » Phishing Zombies » Don't click on email links best defense
Search Topic:
 Share Topic:
RSS topic:
toggle:
flat / full
normal / watch
Post a:
Post a:
Frist! »
AuthorAll Replies


TKJunkMail
Enjoy the sun
Premium
join:2002-03-03
Avalon, NJ
·Sprint Mobile Broa..
·Comcast

reply to JPCass
Re: Don't click on email links best defense

said by JPCass See Profile:
It seems to me that some entirely new security mechanism is needed, so that users can be educated to look for something unique that a fraudulent link or website is unable to provide, rather than trying to teach relatively technical details like the difference between clicking on an address versus typing it in. As a crude example, every secure website could have an intermediate authentication step to prove that the site really does "know" you after a user ID is put in, but before a password is submitted.
Besides being naturally suspicious of all emails not from close friends, I installed the FREE "Earthlink Toolbar" that has a SCAMBLOCKER component. That keeps a continually updated list of phishing scams in the wild and pops up an unavoidable warning that a site may be a scam when it is visited.
»www.earthlink.net/earthlinktoolb···lbarinfo
--
Come visit the Red Room forum
Bush/Cheney 2004
When the eagles are silent, the parrots begin to jabber.- Winston Churchill
to forum · permalink · · 2004-10-20 12:28:13 · Reply to this

JPCass

join:2001-01-23
Denver, CO

reply to TKJunkMail
Obviously, the phishing attacks are luring those who don't understand that basic principle. And unfortunately, I think a lot of those being lured into giving up their private information are those not tech-savvy or analytical enough to be suspicious on their own, and who don't keep up with the news about online security, which is almost by definition a group that is going to be hard to consistently reach and educate.

It seems to me that some entirely new security mechanism is needed, so that users can be educated to look for something unique that a fraudulent link or website is unable to provide, rather than trying to teach relatively technical details like the difference between clicking on an address versus typing it in. As a crude example, every secure website could have an intermediate authentication step to prove that the site really does "know" you after a user ID is put in, but before a password is submitted.
to forum · permalink · · 2004-10-20 12:13:20 · Reply to this
Forums » Phishing ZombiesFrist! »

Thursday, 03-Dec 12:44:03 Terms of Use | Privacy Policy | Hosting by www.nac.net - DSL,Hosting & Co-lo | feedback | contact
over 10 years online! © 1999-2009 dslreports.com.
page compression OFF
Most commented news this week
· [162] Comcast Releasing Promised Usage Meter
· [121] Avast Antivirus Has Gone Mad
· [103] Graduate Student Unveils Sprint's GPS Sharing With Feds
· [80] Latest Consumer Reports Survey Not Kind To AT&T
· [70] Baltimore To Ban Lazy Cable Installs
· [65] Comcast Makes NBC Universal Acquisition Official
· [63] Broadband Killed The Game Console
· [55] Rogers Unveils The ISP Dream Model
· [47] ACTA: Global Three Strikes
· [42] Cable Industry's 'Adoption Plus': Altruism Or PR Stunt?
Most people now reading
· False positive in Avast! or is it real? [Security]
· Many Sites Unreachable [Rogers]
· Warrior tank seem underpowered these days [World of Warcraft]
· [TWC] Audio/Video outage in Brooklyn [Time Warner Cable TV/Voice]
· [Rant] Disrespect of PTO [Rants, Raves, and Praise]
· Quality/longevity of 15A 120V receptacles [Home Repair & Improvement]
· Microsoft actively urges IE 6 users to upgrade [Security]
· IMG 1.7 (IMG Updates and Discussion) [Verizon FIOS TV]
· [ Classes] 3.2.2 Rogue [World of Warcraft]
· necessary to have a comcast net connection to retain the com [Comcast HSI]