Posts

Showing posts from March 1, 2006

Detecting Phishing sites

wikipedia [ " phishing is a form of criminal activity utilizing social engineering fraudulently acquire sensitive information, such as passwords and credit card details, by masquerading as a trustworthy person or business in an apparently official electronic communication, such as an email or an instant message . The term phishing arises from the use of increasingly sophisticated lures to "fish" for users' financial information and passwords. " ] According to Anti-Phishing.org there were 5490 more phishing sites reported in the month of December 2005 as compared to a year ago. And if you run a business which involves any kind of monetary (or identity) transactions, its just a matter of time before you become a victim. A lot of companies today are working together to solve this problem, which is at least as hard, if not more, than shutting email-spam. The underlying reason why phishing is still a good business model is because the users aren't t

Security Podcasts for iTunes

Hackaday has a great blog entry of all the nice security podcasts out there. Here are direct itunes links to all the podcasts with a few more I googled. Security Catalyst Security Now PaulDotCom CyberSpeak LiveAmmo Security BlueBox Crypto-Gram RSA Security MightySeek eDave Geek News Central KevinDevin.com Sabagsecurity.com