International Law
: Freedom to DifferWhy phishing works
Rachna Dhamija, J. D. Tygar and Marti Hearst from the Harvard School of Engineering and Applied Science have published an academic paper explaining "Why Phishing Works". Here is the abstract:
To build systems shielding users from fraudulent (or phishing) websites, designers need to know which attack strategies work and why. This paper provides the first empirical evidence about which malicious strategies are successful at deceiving general users. The authors first analyzed a large set of captured phishing attacks and developed a set of hypotheses about why these strategies might work. They then assessed these hypotheses with a usability study in which 22 participants were shown 20 web sites and asked to determine which ones were fraudulent. The study found that 23% of the participants did not look at browser-based cues such as the address bar, status bar and the security indicators, leading to incorrect choices 40% of the time. It also found that some visual deception attacks can fool even the most sophisticated users. These results illustrate that standard security indicators are not effective for a substantial fraction of users, and suggest that alternative approaches are needed.
Download the paper here.
Full post as published by Freedom to Differ on February 14, 2008 (boomark / email).
More Phishing
Matthew Bowen follows up on Prevention Works' recent warning and help regarding phishing...
E-mail claiming to be from IRS is a scam
If you receive an e-mail from the IRS suggesting your tax refund has been delayed, don?t click on the reply link...
New FTC Videos Help Consumers Spot Phishing Scams
News release: "The Federal Trade Commission has released three 60-second videos to help alert consumers to phishing scams...
PHISHING WITH BAITED SUBPOENAS
Just when you think you?ve seen everything, the bad guys invent a new spin on an old game...
IRS Issues Phishing Warning
The IRS yesterday warned taxpayers of the increasing number of scammers using the IRS's name in identity theft e-mails...
Identity Theft, Phishing And Your Tax Information
California taxpayers beware of identity theft and phishing schemes used under the guise of the IRS...
Is a child fathered out of wedlock by an American diplomat to a foreign women on foreign soil entitled to US Citizenship by jus sanguinis?
This is a very tough situation your friend is in. It is difficult to know the ex...
Haw can I join with my family who live in the USA?
Only you are allowed to can join your sister....
Can a creditor/collection agency call other employees at your place of work AND call your adult children who live in another state?
A creditor can call you at home, several times a day if you aren't answerin...
Is it legal for a company to overwork their employees?
Well, he could 1. Get a new job. Sister, I understand ya, if he's anything ...
Will the INS detect a non-citizen who repeatedly marries and divorces in an attempt to gain citizenship?
you can write a letter to the USCIS and complain about what he did so can he can...
Undetected Sewage Spill
Prichard Water Works and Sewer Board spends $17 million on upgrades and testing.
Technician Whistleblower
Jury orders DuPont Chambers Works to pay $1.224 million settlement to employee.
#1 Online Legal Resource
On 08-28 at 21:13PM
Ten months later, Fed must reveal names of emergency lending recipients #FOIA
On 08-25 at 19:02PM
Squeaky Fromme, would-be Ford assassin and Manson devotee, released from prison
On 08-14 at 15:19PM
Likely unintended consequence of cash-for-clunkers stimulus is dampening of 2010 spending
On 08-14 at 14:34PM
Palm seeks to halt Palm Pre Android theme on copyright and trademark ground
On 08-12 at 17:30PM
Congressional investigation demonstrates Karl Rove lied about his active role in US attorney's firing
On 08-12 at 16:20PM
Family of New York City swine flu victim to sue city for failure to secure school #nyc #swineflu
On 08-12 at 12:59PM
Real Network's DVD copying software deemed to break DMCA's anti-circumvention provisions
On 08-12 at 12:57PM
Prepaid funeral operators indicted for $100 Million fraud
On 08-12 at 12:53PM
NY Jets join Cincinnati, Dallas, Green Bay, Houston & Seattle #NFL teams offering branded state lottery games
On 08-12 at 12:43PM
Is a child fathered out of wedlock by an American diplomat to a foreign women on foreign soil entitled to US Citizenship by jus sanguinis?
This is a very tough situation your friend is in. It is difficult to know the ex...
Haw can I join with my family who live in the USA?
Only you are allowed to can join your sister....
Can a creditor/collection agency call other employees at your place of work AND call your adult children who live in another state?
A creditor can call you at home, several times a day if you aren't answerin...
Is it legal for a company to overwork their employees?
Well, he could 1. Get a new job. Sister, I understand ya, if he's anything ...
Will the INS detect a non-citizen who repeatedly marries and divorces in an attempt to gain citizenship?
you can write a letter to the USCIS and complain about what he did so can he can...
 |
|
Contact Us | About Us | Celebrity Law Blog |
Our Partners | Disclaimer
| Law Blog Directory
| Law Jobs
| Law Tweets
| Get GoDaddy Hosting
All original material © 1999-2009 by USLaw.com. All other material, including Blog Directory feed content, are © by their respective copyright holders. |