Security vendors are launching two Web sites aimed at helping people report and avoid phishing attacks. The Phishing Incident Reporting and Termination Squad (PIRT) is as a volunteer effort designed to take down phishing sites; CipherTrust's PhishRegistry.org site, due to be launched Tuesday, will be a service designed to warn legitimate Web sites when they are being spoofed by phishers.
The PIRT site is looking for volunteers so it can report on new phishing scams and get in touch with authorities to have the Web sites in question taken down as quickly as possible.
"It’s the first public takedown community we know of, and we hope to start nailing these sites," the site's founders said in a statement. PIRT is being managed by anti-spyware vendor Sunbelt Software and Computer Cops, owners of the CastleCops online security network.
The second effort, backed by security vendor CipherTrust, is a free online notification service where companies can register their Web sites and then be notified whenever CipherTrust's sensors detect that legitimate Web pages are being spoofed by phishers.
Phishregistry.org will use the same "Phisherprinting" algorithms used by the company's CipherTrust Radar service to determine whether a site is being spoofed, said Paul Judge, the company's chief technology officer. "This is an effort to allow a broader set of organizations to benefit from this monitoring."
These two new Web sites represent a growing movement to fight back against the phishers, who send unsolicited e-mail directing users to phony Web sites, all in the hopes of tricking them into revealing sensitive information.
Last week, Microsoft pledged to bring about 100 legal actions against phishers in Europe, the Middle East and Africa (EMEA) over the next few months. Organizations such as the Anti-Phishing Working Group and Digital PhishNet already have been formed to combat this growing problem.
According to a poll of 600 business users conducted by security firm Sophos last month, 22 percent of users receive at least five phishing e-mail messages every day.
That's clearly too much, according to Andrew Jaquith, senior analyst with Yankee Group Research. "
Users are mad, and damn it, they're not going to take it anymore," he said.
Get the independent advice and expertise you need to support a virtual workforce.
The increase in Linux popularity has increased the frequency and sophistication of malware attacks. Read this 2 page white paper now to learn how you can protect your Linux environment with real-time protection that is certified by all major Linux vendors.
Download now »
Ensuring acceptable application delivery will become even more difficult over the next few years. As a result, IT organizations need to ensure that the approach that they take to resolving the current application delivery challenges can scale to support the emerging challenges. This handbook elaborates on the key tasks associated with planning, optimization, management and control and provides decision criteria to help IT organizations choose appropriate solutions.
Download now »
A common misconception is that mid-range storage requirements are dramatically different than that of a larger enterprise. Mid-range storage users may require less capacity, but they have similar functionality and management requirements. This ESG paper examines mid-range storage needs and reviews a new solution that adjusts size while retaining value, performance and functionality.
Download now »
This white paper provides guidance on how to develop a strategic approach to managing and monitoring logs, a key function required for compliance with many regulatory mandates and a critical defense against security threats.
Download now! »
Learn about the processes and technologies that support security information management (SIM) operations, as well as the business case for SIM. The series examines different options for implementing SIM and gives you evaluation criteria for selecting the best option for your organization.
Download now! »
Learn the strategies, actions, and capabilities that Best-in-Class organizations employ and technologies they choose to obtain superior performance against various security performance metrics. This report provides guidelines for identifying which security solutions to consume as a MSS and defines best practices for choosing and managing MSSPs.
Download now! »
Recommend This
