First Was Phishing, Next Is Pharming

Discussion in 'privacy general' started by ronjor, Feb 2, 2005.

Thread Status:
Not open for further replies.
  1. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    57,768
    Location:
    Texas
    Full Article
     
  2. ~*Nat*~

    ~*Nat*~ Registered Member

    Joined:
    Jul 9, 2004
    Posts:
    8,129
    Location:
    Germany/Ohio-USA ~ between two worlds
    I was curious to know how many of You actually are using this

    'Netcraft Toolbar' that is mentioned in ronjor's article ?


    :)
     
  3. Kareldjag1

    Kareldjag1 Guest

    Hi,

    This kind of fraud is more and more frequent in Europe.
    Never give any confidential information is the best prevention.

    *** others articles with interesting links (Spoofstick...):

    http://www.pcworld.com/news/article/0,aid,117790,00.asp

    http://www.thestandard.com/internetnews/000529.php

    ***Online service (for ones who don't like toolbars):

    http://www.trustwatch.com/

    ***A special soft against phishing: PhishGuard:

    http://www.phishguard.com/

    It seems that The web is full of "pirhanas"...

    Regards
     
  4. ~*Nat*~

    ~*Nat*~ Registered Member

    Joined:
    Jul 9, 2004
    Posts:
    8,129
    Location:
    Germany/Ohio-USA ~ between two worlds
    First of all, Thank's alot Kareldjag1 for the links !
    Of course you should be careful about giving out personal infos.
    Sometimes though, it seems a bit hard to do, especially when one wants to
    do online transactions. You cannot buy something for example, or perhaps sign up for an Internet service provider, etc, etc...without giving anything
    out.
    I personally don't do online banking ....but have bought
    a couple of times software on the net. Soo, what is there to do ?
    Being careful ! But is this really enough ?!
    It's a nice thought that some tools are available that may help prevent 'accidential' disclosures to the ones it's not meant to be....

    P.S. I'm still waiting on opinions about the particular "netcraft toolbar" ;) :)






    This is from a poster on "Talkback" on eWeek.
    He's right. And when I look in my status bar, with the 'Privacy Report',
    I have to confirm there are a few "nasties" lurking.....
    Not very nice!
     
  5. Acadia

    Acadia Registered Member

    Joined:
    Sep 8, 2002
    Posts:
    4,048
    Location:
    SouthCentral PA
    Hmmmm, very interesting indeed. Wouldn't a simple but effective way of defeating these guys be to keep the url of important financial institutions in your host file, that way you would never need to use DNS?

    Acadia
     
  6. ~*Nat*~

    ~*Nat*~ Registered Member

    Joined:
    Jul 9, 2004
    Posts:
    8,129
    Location:
    Germany/Ohio-USA ~ between two worlds
    Me? I wouldn't know the least about how to to do with host file I'm afraid...:(
     
  7. Bubba

    Bubba Updates Team

    Joined:
    Apr 15, 2002
    Posts:
    11,271
    Nat....let's Please confine the discussion to the article....and consider starting your own thread concerning "netcraft toolbar" in our software & services forum....or you could ask that same question in this fairly recent thread.

    TIA,
    Bubba
     
  8. ~*Nat*~

    ~*Nat*~ Registered Member

    Joined:
    Jul 9, 2004
    Posts:
    8,129
    Location:
    Germany/Ohio-USA ~ between two worlds

    Oh,... sorry Bubba. I thought it would be ok to do here, as this was mentioned in the articel.

    I will start a new thread, or see into the other one. :)


    Edit: I didn't even know a thread about it already existed. Thank's for giving me the link !
     
    Last edited: Feb 3, 2005
  9. kareldjag

    kareldjag Registered Member

    Joined:
    Nov 13, 2004
    Posts:
    622
    Location:
    PARIS AND ITS SUBURBS
    Hi,

    Web apllication attacks are difficult to prevent for a home user.
    There's solutions for sohos and small business but often a little bit expensive:

    Like Easy-Guard: http://www.easy-guard.com

    We could also use an IPS like Prevx, a mobile code filter like SurfinGuard, a powerfull Firewall application, a monotoring files (for the browser) and so on...

    There's also solutions to buy online without giving your card's number:the E-payment:it's just a number available only for one payment.

    Even if there's many vulnerabilities (like XSS) on some sites:

    http://www.securitytracker.com/startup/index.html

    For a payment, it's sometimes better to enable and accept cookies only for this payment (to prevent their theft).
    After, a complete cleaning (cookies, temp file etc) is also a good prevention.

    Regards
     
  10. Acadia

    Acadia Registered Member

    Joined:
    Sep 8, 2002
    Posts:
    4,048
    Location:
    SouthCentral PA
  11. dvk01

    dvk01 Global Moderator

    Joined:
    Oct 9, 2003
    Posts:
    3,131
    Location:
    Loughton, Essex. UK

    No
    the domain name should always be used in preference to an IP number, which might and does frequently change. Many larger financial institutions and other targets will regularly swap a domain to a different IP number on a regular basis to help prevent attacks especially DDOS attacks
     
Thread Status:
Not open for further replies.