Google, Facebook, Yahoo!, Microsoft and eleven others outfits announced that they had formed a new group to fight with phishing, a way of fooling email and net users into giving sensitive information, including credit card numbers. The alliance named as DMARC(Domain-based Message Authentication, Reporting and Conformance)
The worst thing in the internet is phishing. Adam Dawes, a Google product manager and DMARC representative told that the best way to protect user is to make sure the email never reaches the spam folder at all.
Phishing is a simple trick. The scammer spoofs the information in the email message so it actually looks like it came from a genuine sender. There’s a technique to point out where the message really came from, but it can be hard for the average Joe to spot.
Dawes told that the phishing messages are often caught by an email client’s spam filters. But even as they check out their spam folders and open a message and they give a PayPal details before they know it, someone has phished their credit card number. The DMARC idea is to get the email companies functioning behind the scenes to prevent phishing emails from ever receiving your inbox or spam folder.
About 18 months ago, PayPal began working directly with Google and Yahoo to set standards for Gmail and Yahoo! Mail that would prevent bogus PayPal messages from hitting a user’s inbox.
Adkins, a Facebook messaging engineer told the DMARC protocols are based on existing technologies, including the Sender Policy Framework (SPF) and DomainKeys Identified Mail (DKIM). Both are ordinary mail security protocols. In these SPF verifies the email’s senders IP address and DKIM vets the structure of the email’s content..
DMARC is only the cross-industry effort to fight phishing. A global non-profit called The Anti-Phishing Working Group encourages businesses to share the latest information about phishing tactics and techniques.
PayPal’s McDowell reiterates that the goal of DMARC at least for the moment is to defend legitimate domains, not to address what’s sometimes called “typo-phishing,” where scammers use something that looks like a common domain but is actually a slightly different spelling.
He told that Domain based phishing cannot happen when both parties deploy DMARC.
Attorney General Mike DeWine, Columbus said that Sweepstakes scams cost Ohioans about $2 million in 2011. His office’s consumer security branch logged nearly 1,500 complaints about sweepstakes and prizes scams in 2011. He told that his consumer protection division is seeking stronger tools to go after people and companies conducting those types of scams and other fraud against consumers. Lisa Hackley a spokeswoman for the attorney general’s office said that would give more powers to Dewine’s office to take the action against scammers involved in internet theft. The proposed legislation will provide the power of attorney general to inquire for phone and Internet activity records, as well as online payment information in suspected Internet fraud cases. DeWine’s office has said that scammers frequently use websites like eBay and Craigslist to cheat people. American Civil Liberties Union of Ohio Executive Director Chris Link has said that such actions make it easier for law enforcement to access personal information. Hackley said that this bill also create additional penalties for telecommunications fraud against the elderly and disabled persons. DeWine’s office also works with law enforcement around the state to increase prosecutions of those who perform scams on Ohioans. DeWine said that sweepstakes or prizes made up the eighth most common complaint of the top 10 complaints in consumer protection section,2011
Microsoft has warned, if you see a page claiming to allow you to sign up for a Halo 4 ignore that page because it’s a fake and it is meant only for revealing your Xbox Live password.Of course, we obviously know that it’s a scam because no beta version of ‘Halo 4’ has ever been announced or mentioned by Microsoft.
There probably will be a beta at some point this year, possibly in the summer, but Microsoft’s usual procedure is to include access alongside some other prominent game of the time. They haven’t got much lined up so far this year but the Halo previously has come with beta version as ODST and the Gears Of War 3 in Epic Games’ Bulletstorm.
Of course Microsoft has had quite a bit of practice warning about Phishing scams, and it’s still blaming the information of Xbox Live being ‘hacked’ solely on the occurrence. Phishing works by criminals sending emails contains web link that looks like official page(pretending to be from a bank is a common scam) and then trying to trick you into entering usernames, passwords and other personal details into fake websites. Although many Xbox Live users insist they’ve not been victims to such scams there remains no evidence that the service, or Xbox.com, has been hacked in the traditional intellect.
Steve Jobs Charitable Foundation is the latest fake foundation created by spammers to prey on people’s sympathies and this email written in poor English asks for donation to help young web coders. There is no such charity foundation anywhere in the world.
A few scams received for the past 2 – 3 weeks after the death of Steve Jobs included an advertisement about offering free ipads in memory of Steve Jobs. Once you click on the provided link, you will have to fill the online survey to qualify for receiving the free ipad. The ultimate objective of this scam is to drive traffic to their website.
Luis Corrons, the technical director of Panda Labs told that as soon as we heard the death of Steve Jobs, we knew that spammers would start exploiting this and spread their creations to affect the maximum number of victims within a short time.
These scams work by allowing users to enter in websites where they are told that they had won an exciting price such as an iPad or Iphone. The victim may never receive the prize but he may only receive a series of spam messages. A few other malicious websites leverage Geo-location and displays messages in different languages.
Now there were all sorts of warning signs to inform that not to click this link. Most remarkably, I have not seen this friend in person for more than 20 years. Even though there are so many videos out there of me substitute the fool, all have been in use in the past ten years. Secondly, there might be a video out there of me trying a tutu and dancing in a vat of three week ago cottage cheese though reciting the Gettysburg address (I’m not saying one way or the other) and I am still not a close up sufficient friend to this person for them to think about enough to place the video to Face book. But still, I hesitated.
What could have happened if I click the link? The page it takes me to would have in secret forced me to like the video as fine. That video could have exposed up on my page. Additional friends would have clicked it. At least amount it would be irritating, at maximum there could be unseen malicious scripts hiding, pending to infect my computer. This perform is known as ‘Like Jacking’. System safety experts Symantec estimate to facilitate up to 15% of ALL videos posted on Facebook scams.
Even with the awesome proof that this link was a scam, I still had to refuse to accept the urge to click the link. Why? It’s a human nature. We desire to see what people post about us. Scammers are not anything if not students of human nature. They victim on the very aspects of humanity that produce temptation. We desire to see that evidently secret video of Charlie Sheen in deep and logical reflection at church.
Up waiting freshly, the simply way to prevent human nature from attractive its due course was to simply scream “DON’T CLICK THAT” to anyone in earshot (including yourself). Now, the antivirus and protection peoples at Norton have released an app to facilitate circumvent human nature and prevents individual’s posts from ever making it to your Facebook wall.
