Slashdot Mirror
Netcraft Releases Anti-Phishing Toolbar
AgainstHate writes "Netcraft has released an Anti-Phishing Toolbar that provides detailed information about the website you are visiting (sites' hosting location, country, longevity and popularity) at all times to help users to validate fraudulent URLs. It also natively traps cross site scripting and other suspicious URLs. The toolbar also enables users to report phishing attacks to Netcraft, thus blocking any other unsuspecting users from being harmed (Netcraft supervisor validation is used to contain the impact of any false reporting). Currently the toolbar is only available for IE but a Firefox version is under development."
This will have little affect because:
1) The people who really need it will never hear about it.
2) Even if 1 fails to return true, the people who really need it will never be able to find it amongst the 82 other toolbars that various companies have so helpfully installed for the sucke.... uh... users.
Alito: A vote for Alito is a punch in the eye to put that bitch back in her place!
something you'd look at initially, get used to, and quickly ignore.
The cesspool just got a check and balance.
I wonder if Netcraft has a method to report to the targetted business (banks, Ebay, etc) so they can follow up on legal action.
Netcraft confirms it. Only /. readers are ever going to use this.
*ducks*
"An infinite number of monkeys typing into GNU emacs would never make a good program."
Necraft has confirmed this toolbar exists.
Firefox SpoofStick Extension
Am I the only one who misread this for "Microsoft releases anti-phishing bar"?
have phishing scams become this big of a problem that we need a tool like this? I remeber back in the aol 2.5 days, you couldnt go more than 10 minutes without a mass phishing im trying to get your password. With secure sites and common sense, i believe most people can avoid phishing scams
Will this really protect people who succumb to phishing in the first place?
If you're going to fall for one of the oldest tricks in the book, I don't think this new-fangled anti-phishing toolbar is going to do you any help.
Excuse me, I don't mean to impose, but I am the ocean
Netcraft confirms it.
(ducks)
One more crippling bombshell hit the already beleaguered phishing community when IDC confirmed that successful phishing attempts have dropped yet again, now down to less than a fraction of 1 percent of all phish-mails sent out. Coming on the heels of a recent Netcraft survey which plainly states that phishing has lost more market share, this news serves to reinforce what we've known all along. Phishing is collapsing in complete disarray, as fittingly exemplified by failing dead last in the recent Sys Admin comprehensive scam list.
You don't need to be a Kreskin to predict phishing's future. The hand writing is on the wall: Phishing faces a bleak future. In fact there won't be any future at all for phishing because phishing is dying. Things are looking very bad for phishing. As many of us are already aware, phishing continues to lose market share. Red ink flows like a river of fish-blood.
CitiBank phishes are the most endangered of them all, having lost 93% of its core spam-relays. The sudden and unpleasant departures of long time phishmeisters developers Gordon "Bassmaster" Hubble and Frank "Fifth Third" Blackman only serve to underscore the point more clearly. There can no longer be any doubt: Phishing is dying.
Fact: Phishing is dying
Don't blame Durga. I voted for Centauri.
I installed it at work yesterday because I like Netcraft and I only use the Google toolbar on IE to block popups (although I use Firefox 99% of the time anyway). I noticed it didn't block popups from the sites I visit (ex: cnn.com), even though it has the option to "block unrequested popup windows" in Options. The anti-phishing is great, but it would be nice if the popup blocking worked for those who can't install XP SP2.
I could care less since I use Firefox. My parents could use it since they have XP SP2. I guess the people who have to decide between blocked popups and blocking phishing sites are those who run 2000 or Windows 9x, although I think Earthlink has a toolbar that will block both (not sure how well it works though). Again, no big deal, but I thought it was strange that they didn't include a working popup blocker. Seems like a automatic throw-in for all modern IE toolbars, though anyone still using IE is likely either required to (through shoddy programming or "advanced" IE-only features (what I call "screw you" features, since they're basically saying that to anyone who doesn't run windows, is disabled, or uses a text reader of some sort (braille, cell phone)) or is too novice to understand why IE == death.
Anything but IE in 2005! Viva la revolución!
very nice tool for other uses besides phising prevention... hope it comes ti firefox soon, cause otherwise its useless for me...
It would be great if it worked in firefox. I won't use IE just to have this little toolbar.
Dave
-- Powered By Linux
are a little more tech savvy, on the whole. They have gone to the trouble to download a safer browser, and probably less likely to get sucked into a phish scam. OTOH, I have seen some pretty good ones, and I did click on a Pay Pal one, before I had second thoughts.
Save a Life. Donate Blood. Please.
IMHO the right fix is to have a good browser which don't allow phising.
either color the URL in RED with a warning mark when it does not match the real address or give a quick pop explaining this.
Why does that pesky windoze virus Win32.InternetExploer seem to have so many plugins for it?
i consider it still under release :o
but does it really matter? the people who would install it KNOW that they are scams. people like my mother, who would have no idea what the toolbar even means, would not
Already available from Corestreet for Firefox and IE http://www.corestreet.com/spoofstick/
Yet another "toolbar" on my dad's computer. Half his IE window is already gone with toolbars, and little weather reporting and spyware killing doodads. It's a wonder the computer still runs. Then again . . .
www.google.com is the place to ask these things.
Oh and most decent printable CD's have a suggestion that works well on the packaging.
I'll give you a hint. Spray Shellac.
next time type www.google.com instead of www.slashdot.com
Yes I gave real info to a troll... but unless he has an iq above 120 he will never figure out how to sucessfully spray the disc.
And someone with a malicious website will have figured out how to use this anti-phishing toolbar as a vector for remote code execution.
fast as fast can be. you'll never catch me.
Not that I am a phishing scam victim, but I look forward to using this application. FWIW, news reports are showing up about the increased intelligence of such scams. There was just one such report posted here yesterday.
Just because I have not suffered from such scams does not mean that I am invulnerable to them. Hopefully, this will be a very useful tool to combat the onslaught.
With any luck, this might be another Firefox killer app, in addition to googlebar. Maybe it could even deep-six the puny anti-spoof extension which is currently available for Firefox?
8 Advertising and sponsorship
Part of the Toolbar may contain advertising and sponsorship. Advertisers and sponsors are responsible for ensuring that material submitted for inclusion on the Toolbar complies with relevant laws and codes. We will not be responsible for any error or inaccuracy in advertising and sponsorship material.
So, be warned: it may contain some kind of adware, and it may be the kind you find hard to ignore. I'm not installing it until I know more.
John
From: admin@netcrapht.com
To: slashdottroll@hawtmail.com
Date: 2004/12/28
Re: We've announcted a new anti-Phishing control bar for your browser! To take advantage of this amazing free offer, just login here and register using your name and Bank One check number! Don't delay. You will also be eligible for a free u-n-i-v-e-r-s-i-t-y diploma!
Don't blame Durga. I voted for Centauri.
I've been hitting google.
Any search involving "inkjet" "cd" and "smudging" gives me 200 pages of e-tailers and advertisements.
Google is fast becoming nothing more than an advertising engine. Anyone else notice the sudden prevelance of commercial sites now that they've gone public? If I search for this slashdot headline verbatim, I betcha slashdot isn't the first result.
If you read my post you'd notice I already said spraying them with lacquer, but that's a pain in the ass.
BTW, only a moron would use shellac, it reacts with plastic and takes forever to dry.
MSN, Google, hi5.com, Netcraft, Yahoo, AOL's....
:)
So guys, when will the Slashdot Toolbar come out?
Spyware???
I hope not.
The hip way to get your IP. No ads, ever.
You can't just open and close your posts with a relevant phrase, and fill the middle of your msg. with non-related helpdesk questions....
I can, and I did.
Did you know that in Halo 2, if you snipe the ghost right in that little round thing down by the riders foot, you can blow it up in one shot? And despite what people say, you can snipe people driving tanks, you just have to be above them to do it.
You can't just open and close your posts with a relevant phrase, and fill the middle of your msg. with non-related helpdesk questions....
I can and I did.
I don't need no instructions to know how to rock!!!!
Get a clue, and post your questions on a relevant site, or thread.
And you, sir, should let the moderation system handle off-topic posts rather than adding more fuel to the fire. Ah shit, now I'm guilty of the same thing :-)
...that this is an old, outdated, and unfunny joke.
http://www.cgisecurity.com/articles/xss-faq.shtml
The browser is for browsing web pages.
The man who trades freedom for security does not deserve nor will he ever receive either. - Benjamin Franklin
What the heck?
you can and you did
and that makes you an idiot.
are you dudes starting to copy&paste others? (the register &co)
I mean, come on. That's obligatory for a toolbar from Netcraft.
I can picture it already: "Next article posted in 3... 2... 1..."
There's a Mercedes gap too. I want one and can't afford one, but it's not government's job to do anything about it.
When can I get a Safari one?
well, there ya go, the joke is in the subject
As if there wasn't enough screen space taken up already.
i oni ndow_open_feature.titlebar_ change
w indow_open_feature.closet ure.directoriesb arb le_window_open_feature.personalbarw _open_feature.resizableu re.scrollbarsr
Switch to Firefox and enable the non-spoofing features and you don't need a toolbar (don't allow URL to be hidden, etc.)
In firefox, type in about:config
then set these to TRUE and never be "fooled" again:
recommended:
disable_window_open_feature.locat
disable_window_open_feature.status
disable_w
disable_window_status
optional:
disable_window_move_resize
disable_
disable_window_open_fea
disable_window_open_feature.menu
disable_window_open_feature.minimizable
disa
disable_windo
disable_window_open_feat
disable_window_open_feature.toolba
Reason: Tools and overt actions are not solutions for stupid people.
Evidence: Warning labels on coffee.
Tom
Someday, I'll have a real sig.
Not necessarily. I plan to look into this; if I deem it worthwhile and not overly intrusive, I may make it manatory for my users group, and recommend doing so to other departmental Sysapes at my job.
Not that I'll use it at work myself-- there's no version yet for the Macintoy OS browsers, and I only use a PC at home.
This toolbar isn't going to help. The user still has to know how to evaluate the information the toolbar is presenting. The information on it at Netcraft is going to require explaining to 99% of the users. It adds conplexity for users that already can't handle complexity. If it was a simple green light or red light then it might be useful for the masses, as is, it's more noise users can't handle.
Two simple things users should do that have already been published in nearly every article on scams;
1. Use an email client like mail in OSX that you can configure for text only with the option to load images. That alone will reveal scam emails for what they are instantly.
2. Never ever enter personal information on some web page you got off a link in an email. Never. If it purports to come from your bank, manually type in your banks URL and see if you can verify what the email is saying, or call your bank or credit card company. Banks or credit cards today will never send you an email trying to scare you, saying you'll "lose access" if you don't visit their site. They've already learned not to do that because of the scams.
This toolbar might be interesting to a geek but it will raise more questions from ma and grandma than it answers.
I know there are more complicated phishing scams using IE holes and the like to make the address of the site show in the address bar, but all the phishing emails I seem to get send you to either a different domain name or an unresolved IP address. It doesn't take much to move your mouse over the address, see that it goes to 123.456.789.101 and not www.ebay.com to figure out it's a spoof.
Or you could just realize that ebay, paypal, and your bank will not send you emails asking for personal info, and never click on links on such emails but rather go to the site directly.
but why do that when you can download another toolbar?
I have blog like everyone else
Speaking as my family tech support geek (which I think most of us on /. can relate to) I think this tool will be highly useful for people who know nothing about phishing scams as yet another barrier *I* will install for them.
While a year wouldn't be enough time to educate all my relatives and friends on the various and ever-changing intricacies of PC web security, it's very useful to be able to install an app and tell them 'Look, if this thing pops up a big red warning, do what it says so you don't get a virus!' I've switched over everyone in my family to Firefox, all they care about is that it works pretty much the same for their needs as IE did. The google toolbar to block popups, zone alaram to catch other nasties, autorunning spybot and a coolwebsearch sweeper - these are all programs that make their web use look savvy but they ultimately have very little knowledge about. Now that my mom has started using the internet to buy things, no doubt she'll eventually get a phishing scam at some point relating to eBay or Amazon, with this toolbar hopefully now I can just set it and forget it and not worry as much that she's going to give all her bank info to some fake eBay site.
-- I'm not a pessimist, I'm a realist. It's not my fault that life sucks so much. --
Eudora 6 has been doing something like this for a while. If you get any e-mail with a URL in it, hovering over it will show the actual, underlying HREF, no different that any browser will; however, it will give you a warning if the URL is not the same as the underlying HREF code.
Sadly, the biggest obstacles to any topic such as this are user ignorance, apathy, and lack of common sense. And these are three massive hurdles that need to be overcome, which no single tool bar can do. As many can attest, it's a bitch of a task to try to get the following kinds of people to actually think rationally:
Oh, look! I just got an e-mail. Hey! It has a link! Although I cannot explain why, I have such an incredible urge to click on the link even though I have never heard of the company and I really don't need a fake Rolex watch! Same thing with those bank with whom I never know that I had an account, but I obviously need to update my information.
The Overrated mod is for reversing inappropriate, positive mods, not for voicing disagreement with a post.
Toolbar User Terms
Please read carefully
These User Terms govern your relationship with Netcraft Ltd ("Netcraft, we, our or us") and your use of the Netcraft Toolbar (the "Toolbar"). These User Terms affect your rights and liabilities under the law. If you do not agree to these User Terms, please do not download or use the Toolbar.
THESE USER TERMS DO NOT AFFECT YOUR STATUTORY RIGHTS
1 Use of the Toolbar
The Toolbar is provided to you for your personal use subject to these User Terms. By using the Toolbar you agree to be bound by these User Terms.
The functionality of the Toolbar is provided by means of a user interface implemented as a toolbar on your computer and a central server managed by us.
2 Amendments
We may update these User Terms from time to time and any changes will be notified to you via a suitable announcement via the Toolbar. The changes will apply to the use of the Toolbar after we have given notice. If you do not wish to accept the new User Terms you should not continue to use the Toolbar. If you continue to use the Toolbar after the date on which the change comes into effect, your use of the Toolbar indicates your agreement to be bound by the new User Terms.
3 Licence
The Toolbar is protected by copyright, trade marks, database and other intellectual property rights. Subject to your acceptance of these User Terms, we grant you a non-exclusive, non-transferable and non-assignable licence to download, install and use the Toolbar for your own personal, non-commercial enjoyment either at home or work. You must obtain our permission in writing beforehand if you want to carry out any commercial activity which involves using the Toolbar or any software or information associated with, or derived from, it. If you would like to do this, contact us at toolbar@netcraft.com
You may not otherwise reproduce, modify, copy, distribute, reverse engineer or use for commercial purposes any of the software or content in the Toolbar without written permission from us. No additional licence is granted to you to use any trade mark of Netcraft or its affiliated companies including, without limitation, the trade mark "Netcraft".
4 Availability
Your access to the Toolbar may be occasionally interrupted or restricted to allow for repairs, maintenance or the introduction of new facilities or services. We will attempt to restore the service as soon as we reasonably can.
5 Excluded services
The provision of the Toolbar does not include the provision of computer or other necessary equipment or compatible software to download, install and use the Toolbar. To use the Toolbar you will require Internet connectivity and appropriate telecommunication links. We will not be liable for any telephone or other costs that you may incur.
6 Liability
Although we aim to offer you the best possible service, the functionality of the Toolbar relies on information collected from a number of sources and while we try to ensure that the Toolbar facilitates a safe use of the Internet, we cannot accept responsibility if this is not the case. We cannot guarantee that the Toolbar will be fault free and you must bear the risks associated with the use of the Internet.
We will not be responsible for any technical problems you may experience with the Toolbar. If we are informed of any inaccuracies in the functionality of the Toolbar we will attempt to correct the inaccuracies as soon as we reasonably can. We make no promise that the Toolbar will meet your requirements. In particular, we disclaim all liabilities in connection with the following:
incompatibility of the Toolbar with any of your equipment, software or telecommunications links
technical problems including errors or interruptions of the Toolbar
unsuitability, unreliability or inaccuracy of the Toolbar
inadequacy of the Toolbar to meet your requirements
We welcome comments or suggestions on h
The alert needs to say "pwned". Then they'll ph34r your skillz (or something) and try and get your local police force to raid your house.
And I mean that in a completely heterosexual way.
This was on Anandtech a few days ago. /. Bit redundant to post it now.
Slashdot 1|0 Productivity
Hogwash.
Yes, I changed my own oil for years. Now I have better things to do with my life. Change a few words around in this reasoning, and you'll understand why "most people" don't want to fool around with their computers.
Sean
Jesus you're a fucking idiot.
IE == death
Really? I used IE until Mozilla (the suite) 0.9 came out. I assure you, I am still alive.
Currently the toolbar is only available for IE but a Firefox version is under development.
I'm just curious, are "Mozilla" and "Firefox" effectively synonymous now? Or do people sometimes mean Firefox but not Mozilla?
OK, I'm a WinXP user, SP2, pop-ups turned completely off, run SpyBot, AdAware and look at my BHO's at least once a week because I don't trust computer programs, even though/because I write them for a living...
:-), and have a couple of first impressions. I'm going to apply the "Mother Test" to the tool bar to evaluate it's usefullnes.
:-)
Installed it, read the instructions and FAQ (I know, I'm not supposed to do that
The tool bar installs with initally two items, Netcraft, and Services. Services is simply a drop down with links to all of Netcrafts services, trying to drum up business. I initally thought that services would hot link to some of the Netcraft tools like uptime and what is that site running, but no, just links to the main pages for them. There are 7 main items under serives, and 19 sub-items. Offerings
are impressive, but I don't think my mother would care at all about Hosting Providers or Web site auditing.
I can't evaluate the pop-up blocker since I have pop-ups completely turned off via XP SP2. I also run the Google toolbar, so pop-ups haven't bothered me in quite some time (except those occational ones that sneak through when you hold down the ctrl key to click a pop-up link. Who ever thought of using the same key to allow all pop-ups and allow one pop-up should be shot.)
As for the phishing, looks like it will work fine. The toolbar will have to pull down a new definitions file every couple of hours (2 by default), but that should be fine. Reporting a site is relatively easy. This is a thumbs up for the Mother Test
The Stats that it displays are pretty worthless. Pretty flags, but other than that, who cares. Rank is meaningless unless they get rid of their own sites. Pretty obvious that the most visited site is http://toolbar.netcraft.com.
The thing that most disturbs me are the stats that are gathered: http://toolbar.netcraft.com/stats/topsites
*Without*any*privacy*statement*, I have no idea what they are doing with my browsing information. This certainly scares me enough to uninstall this sucker. I understand that privacy is going away, I just like to fight it tooth and nail. (Except google, their cool. Until their IPO. oh wait...
Oh yea. Regarding my subject: look at line 12 of the stats:
Rank Site First Seen Netblock Site Report Country
12 http://banners.netcraft.com June 2003 Netcraft Go UK
www.christopherlewis.com
It doesn't play well with the Google toolbar. Hell it doesn't play well with any toolbars. After I installed it, all my (standard) toolbars were moved around or resized to 0 width. Its very frustrating when companies release crap software like this. Don't these people know about QA?
Uhm wooptie, but doesn't Firefox already have a similar plugin with "SpoofStick"? Perhaps not as "advanced", but the idea seems to be the same.
r ei nfo.php?application=firefox&version=1.0&os=Windows &category=Privacy%20and%20Security&numpg=10&id=121
:)
https://addons.update.mozilla.org/extensions/mo
Sad little IE users and all those toolbars with "free spywa... uhm, I mean software!" that they need to somewhat come close to Firefox
I installed it and tested it, by clicking on this fishing email I had recieved. Some website in Brazil.
When IE came up, the section of the Netcraft Toolbar that should have the information on the site was all white, except for an https link that pointed to ebay.com.
Probably just a glitch in the toolbar, but a little sad the first bad link I tried, it didn't help.
what we really need to worry about is all the telephone, power, internet, etc. companies serving up all your credit information to huge call centers filled with incompetent people over internet explorer. as my trainer says, "you'll have to open another E to get to that program." "that program" is the one we use to view and change account information.
it is scary, yes?
it is savvy, no.
A few more toolbars on the screen and I won't be able to see much more than a 1" strip of any suspect site anyway, let alone enter any information - cool! Secure!
AT&ROFLMAO
Phishers are already rewriting the entire screen. They can rewrite the part that contains the Netcraft bar, also.
Also, does anyone know how the blacklisting works? Can an innocent firm be blacklisted until Netcraft gets around to unblacklisting them?
I got so excited about this, until the last line about it only being available for IE. They better get cracking on the FireFox extension, as it would really boost FireFox as well.
Personally, I am just glad that they decided to do this out of the goodness of their hearts, and it's a great day for anti phishing folks out there.
1f u c4n r34d th1s u r34lly n33d t0 g37 l41d Capitalization really works: i helped my uncle jack off a horse
Here's a tip I just read about 20 minutes ago in a company newsletter:
If you're unsure about the source (or if it came in an e-mail), enter a false password/id-password combo. If it really is your legit bank asking stuff, they will say 'incorrect login', if it's a scam, they will accept it because they're trying to steal it. Notify your bank's IT security office afterwards.
I've already come up with my own toolbar. I can get it to you, just go to http://www.*.com, pull out your credit card...
FraudEliminator was released in November. While Netcraft's product resembles ours it does not provide the same level of protection. FraudEliminator was designed to protect our Mothers and Grandmothers. We not only block pages that are already on our black list; we analyze every page as it loads and block suspicious sites based on a user configurable set of rules. When a suspicious site is blocked you may choose to continue to the site if you know that it is safe or block the page from loading. We do not offer any advertising in our toolbar. We are close to releasing a Macintosh version as well as a Firefox version. We welcome all comments and suggestions. Jeffrey Hellman President FraudEliminator, LLC jnh@fraudeliminator.com
The closer to your soul you choose your goal, the nearer to your heart the work can start.
If I use IE for another two years, my tool bars (pop-up blocking, anti-phishing, and what not) will take more room than the actual content of the web pages. Then browser page will effectively become a toolbar!
So I installed Trust, Google, Netcraft, Earthlink, Ebay and Spoofstick toolbars. This results in a) not enough screen space and b) Netcraft plotzing. Everyone else plays well, but the Netcraft toolbar disappears and gives errors like "An error (ActiveX component can't create object: 429) occurred while loading toolbar options. Please contact technical support for further information." All I wanted was a screenshot....
What I say does not represent the views of my employers, my friends, my cats, or myself.
Toolbar.
I really do not care much about getting alerts for sites I just visit.
I want an alarm to sound only when it matters most - when I submit a form containing a password or a credit card number to a fraudulent site.
In my opinion that makes SignupShield or similar products a better choice.
Straight from the Netcraft Licence Agreement:
"Part of the Toolbar may contain advertising and sponsorship. Advertisers and sponsors are responsible for ensuring that material submitted for inclusion on the Toolbar complies with relevant laws and codes. We will not be responsible for any error or inaccuracy in advertising and sponsorship material."