Explore the latest news and trends  

Keep yourself up to date with one of the following options:

  • Explore more news around Spam/Phishing, Malware/Cyber-attacks and Antivirus
  • Receive news and special offers from SPAMfighter directly in your inbox.
  • Get free tips and tricks from our blog and improve your security when surfing the net.

Cooperation Summoned From Security Vendors to Fight Phishing

According to security researchers at the eCrime Researchers Summit held in Atlanta, Georgia, the average life span of infected Websites are commonly longer than the stipulated longevity as security vendors lack cooperation and communication among themselves.

And as per the results provided by the security researchers, malicious Websites life spans are extended five days longer when "take-down" organizations remain ignorant of those sites. Also, sometimes the organization becomes aware of a particular site only after elapsing some time from its first detection and this elongates its life span by about two days.

In general, the "take-down" organizations are specialist offshoots of "brand-protection" companies. These companies are hired by banks to eliminate fraudulent phishing sites.

The report stated that during a careful examination of data, it was discovered that the security researchers were getting "feeds" of spoofed Website URLs from various sources, while the "take-down" organizations transmitting the data to those researchers weren't transmitting the same among themselves.

Therefore, the researchers said that it often happens that a particular 'take-down' organization is aware of a phishing site targeting a specific bank, but a different 'take-down' organization doesn't know about its existence. Further, if this second organization is authorized to eliminate phishing sites on behalf of that particular bank, then, as the organization is not aware of the site's existence, it doesn't take any action, allowing the site to remain active.

Similarly, security investigators at the University of Cambridge have also examined data exchange among organizations that banks have hired to shut down phishing sites. They reveal that organizations aware of malicious URLs do not share the news, causing these sites to remain active for longer time periods than the stipulated ones, eventually leading to loss of millions for banks through phishing.

Hence, the results categorically demonstrate that considerable sums of money are risked due to the downfall of URLs. Meanwhile, a prime method used by banks to mitigate the impact of phishing involves removing fraudulent Websites or suspending abusive domain addresses. Researchers also suggested defenders against phishing attacks to begin exchanging their data regarding phishing URLs in a cooperative manner.

Related article: Cooperative Bank Cautioned its Customers about a Trojan

ยป SPAMfighter News - 30-10-2008

3 simple steps to update drivers on your Windows PCSlow PC? Optimize your Slow PC with SLOW-PCfighter!Email Cluttered with Spam? Free Spam Filter!

Exchange Anti Spam Filter
Go back to previous page