Newsflash

After the good job that we have done with this site in the past 2 months, we have decided to sell  onemileaway.com and all its content. At this moment the website produces several  unique visitors per month, and has an Alexa rank of 1,069,434 . The traffic is still increasing everyday due to the SEO-strategies we have applied. This is an excellent opportunity for everybody who would buy a site already launched.

The price is only 20.000$ and it is negotiable. Email us if you are interested. Thanks.

 
Tips to avoid Phishing PDF Print E-mail
Written by cecco   
Tuesday, 22 January 2008
Phishing is an attack which tries to capture your username and password of a bank service in which you are registered. This attack works as follow. The attacker build a web site which has the same look as a well known bank transaction service, such as PayPal. Then he retrieves thousands of email addresses and sends each of them a message that seems to be sent by the bank service itself.

 In this message are reported the url of the faked service, and an invitation for the user to insert his credentials on that service because some problems with his account has occurred. Thus, since the user considers the message trusted, he clicks on the link and inserts his username and password, so that the attacker, on the faked server side, could capture user’s private data. The key point here is that the user will not realize that the attacker has captured his password because the faked web server will redirect the user to the real web server home page.

 This is an example of Phishing

A countermeasure is to drop all emails of the type described above, because it is unusual that a bank service forces you to insert your credentials. But if you think the email could be real, then you can visually analyse the url and take care that no manumission has been done on it. However this solution is not always applicable because the url can be obfuscated. So, another solution is to change your ISP DNS servers with the ones provided by a service such as openDNS. A service like that maintains a blacklist of servers IP which are known to be phishing, and so when your browser tries to reach the attacker’s url, openDNS will not resolve the corresponding attacker’s ip.
Last Updated ( Tuesday, 29 January 2008 )
 
< Prev   Next >
[ Back ]
RocketTheme Joomla Templates customized by onemileaway.com