Bruce on Phishing: It’s the Banks, Stupid

Bruce Schneier again talks sense, this time about phishing: Schneier on Security: Phishing Financial companies have until now avoided taking on phishers in a serious way, because it’s cheaper and simpler to pay the costs of fraud. That’s unacceptable, however, because consumers who fall prey to these scams pay a price that goes beyond financial … Read more

What’s Safe?

Another example of why you can’t really trust software to tell you whether a website is dangerous or not. The Register reports that a Trusted search software labels fraud site as ‘safe’:   Digital certificate firm GeoTrust’s launch of a search engine with built in trust features this week has been marred by the classification … Read more

The Demise of the Anti-phishing Toolbar?

Must confess I missed this when it first kicked in, but could it be the nail in the ‘anti-phishing toolbar’ coffin? EarthLink lands a win, according to ZDNet, after being sued by a bank incorrectly flagged as a phishing website: EarthLink had warned its customers who installed a free “ScamBlocker” toolbar–and visited AssociatedBank.com–that the Web site … Read more

Microsoft and Rogue Dialers

A week late with this, but still shocking enough for a mention: Microsoft’s UK security chief has admitted to be being hit by a rogue dialler, according to ZDNet UK News: Rogue diallers have claimed a high-profile victim — Microsoft UK’s chief security advisor Ed Gibson. Speaking to ZDNet UK on Tuesday, Gibson revealed that … Read more

Dogbert Goes Phishing

It’s not on his homepage yet, but check out Friday’s Dilbert strip: it’s about phishing and does more than a 1,000 bank warning notices could do to show how it works and why folk are dumb to be taken in by it. An email lands on The Pointy Haired One’s screen, Dear Customer, This is … Read more