Close
  • Latest News
  • Artificial Intelligence
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
Read Down
Sign in
Close
Welcome!Log into your account
Forgot your password?
Read Down
Password recovery
Recover your password
Close
Search
Logo
Logo
  • Latest News
  • Artificial Intelligence
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
More
    Home Applications
    • Applications
    • Cybersecurity

    Microsoft Enhances Its Anti-Phishing Tools

    By
    Gene J. Koprowski
    -
    August 25, 2005
    Share
    Facebook
    Twitter
    Linkedin

      Microsoft—seeking to help prevent ID theft—is among the growing list of software companies that are developing new tools that caution consumers when “phishing” attacks are under way on the Internet.

      Microsoft Corp.s Internet Explorer 7 browser, which is available now only in beta tests, features the new filtering technology.

      The company is planning to add the technology into a tool bar for older versions of Internet Explorer.

      Microsoft, however, apparently did not develop the new feature itself.

      “WholeSecurity provides the functionality for the phishing component that is part of IE 7,” said Ann Taylor, a spokesperson for WholeSecurity Inc., the developer, based in Austin, Texas.

      The filter identifies and blocks fraudulent Web sites that try and deceive users in efforts to obtain their bank account details and other personal information.

      Last week, an anti-phishing service was announced by the anti-virus software company Sophos plc., based in Abingdon, U.K.

      The company announced a fee-based service to notify computer users about phishing attacks.

      “Phishing attacks cost companies like financial services and online retailers money and time,” said Gregg Mastoras, senior security analyst at Sophos.

      “This service will automatically notify users, enabling them to warn their customers and immediately appeal to law enforcement agencies and ISPs to shut down a phishing site.”

      A July 2005 study by the Ponemon Institute, a data privacy and business ethics research firm, shows 59 percent of consumers reported reducing online transactions as a result of phishing scams.

      A June 2005 survey by Gartner Inc. of 5,000 U.S. consumers reported that the number of phishing attack e-mail recipients grew by 28 percent.

      “Phishing attacks are not subsiding, despite some industry theories that phishing is a fad that peaked in 2004. An estimated 2.42 million U.S. adults report losing money in phishing attacks,” the Gartner study said.

      “According to these victims, total financial losses this past year amounted to nearly $929 million. Perhaps the biggest impact for businesses is a newfound and serious consumer distrust of e-mail.”

      The APWG (Anti-Phishing Working Group), an industry alliance that concentrates on eliminating online fraud and identity theft, reported more than 2,800 active phishing sites in April of this year—double the number reported just last October.

      /zimages/4/28571.gifRead more here about Sophos rolling out an early-warning system for phishing attacks.

      The Microsoft anti-phishing tool will be available to computer users running the Windows XP operating system with last years Service Pack 2 security upgrade.

      The tool was built to stop scammers who try to con unsuspecting computer users into revealing passwords—generally by posing as a legitimate banking or a retail site.

      When users encounter a strange site, users of IE 7 and other Microsoft products will soon have the option to forward that address to Microsoft to check against a database of known phishing sites.

      A red warning page appears on screen when a known fraudulent site is detected.

      The filter also displays a pop-up warning when it sees signs of possible phishing behavior on a site, such as the lack of SSL encryption to protect passwords.

      The effort is one of many launched by Microsoft to combat spam, including enhancements to e-mail sender authentication for Microsoft Networks Hotmail accounts, and so-called “postmaster” services for ISPs to track spam sent via their servers.

      These efforts seem to be providing tactical intelligence for the filter updates.

      “With over 200 million active e-mail accounts worldwide, MSN Hotmail is in a unique position to collect and analyze e-mail activity data,” said Kevin Doerr, product unit manager at MSN Hotmail at Microsoft.

      “Working together, MSN Hotmail and service providers can make their customers happier and more satisfied with the services we all provide.”

      The Sophos service—while not integrated into a browser—provides e-mail samples and additional information to help companies respond quickly to phishing attacks and reports on overall phishing activities.

      The service also identifies fraudulent Web sites to users of the PhishAlert service, the company said. Other services and technologies are coming to market.

      Next week, McAfee is expected to announce the availability of managed e-mail security services for small business and enterprise customers, powered by the Postini Perimeter Manager product line.

      The solution will apparently offer e-mail protection against spam, phishing, inappropriate content and viruses for these users, the company told Ziff Davis Internet.

      Other, established efforts are continuing in the anti-phishing area, targeting the corporate market.

      “WholeSecurity has a phishing solution—Confidence Online Phish Finder—that we sell to companies; we also operate the Phish Report Network, which eBay, Visa, PayPal and Microsoft all were founding members,” said Taylor.

      /zimages/4/28571.gifCheck out eWEEK.coms for the latest security news, reviews and analysis. And for insights on security coverage around the Web, take a look at eWEEK.com Security Center Editor Larry Seltzers Weblog.

      Gene J. Koprowski
      Get the Free Newsletter!
      Subscribe to Daily Tech Insider for top news, trends & analysis
      This email address is invalid.
      Get the Free Newsletter!
      Subscribe to Daily Tech Insider for top news, trends & analysis
      This email address is invalid.

      MOST POPULAR ARTICLES

      Latest News

      Zeus Kerravala on Networking: Multicloud, 5G, and...

      James Maguire - December 16, 2022 0
      I spoke with Zeus Kerravala, industry analyst at ZK Research, about the rapid changes in enterprise networking, as tech advances and digital transformation prompt...
      Read more
      Applications

      Datadog President Amit Agarwal on Trends in...

      James Maguire - November 11, 2022 0
      I spoke with Amit Agarwal, President of Datadog, about infrastructure observability, from current trends to key challenges to the future of this rapidly growing...
      Read more
      IT Management

      Intuit’s Nhung Ho on AI for the...

      James Maguire - May 13, 2022 0
      I spoke with Nhung Ho, Vice President of AI at Intuit, about adoption of AI in the small and medium-sized business market, and how...
      Read more
      Applications

      Kyndryl’s Nicolas Sekkaki on Handling AI and...

      James Maguire - November 9, 2022 0
      I spoke with Nicolas Sekkaki, Group Practice Leader for Applications, Data and AI at Kyndryl, about how companies can boost both their AI and...
      Read more
      Cloud

      IGEL CEO Jed Ayres on Edge and...

      James Maguire - June 14, 2022 0
      I spoke with Jed Ayres, CEO of IGEL, about the endpoint sector, and an open source OS for the cloud; we also spoke about...
      Read more
      Logo

      eWeek has the latest technology news and analysis, buying guides, and product reviews for IT professionals and technology buyers. The site’s focus is on innovative solutions and covering in-depth technical content. eWeek stays on the cutting edge of technology news and IT trends through interviews and expert analysis. Gain insight from top innovators and thought leaders in the fields of IT, business, enterprise software, startups, and more.

      Facebook
      Linkedin
      RSS
      Twitter
      Youtube

      Advertisers

      Advertise with TechnologyAdvice on eWeek and our other IT-focused platforms.

      Advertise with Us

      Menu

      • About eWeek
      • Subscribe to our Newsletter
      • Latest News

      Our Brands

      • Privacy Policy
      • Terms
      • About
      • Contact
      • Advertise
      • Sitemap
      • California – Do Not Sell My Information

      Property of TechnologyAdvice.
      © 2022 TechnologyAdvice. All Rights Reserved

      Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

      ×