Google, Microsoft, Facebook, Bank of America team to wipe out phishing

Status
Not open for further replies.
Jack

Jack

Administrator
Thread author
Verified
Staff Member
Well-known
Jan 24, 2011
9,378
Network Land said:
Can industry heavyweights Google, PayPal, Microsoft and AOL -- along with 11 others in high-tech such as Facebook and LinkedIn, as well as the financial world's Bank of America and Fidelity Investments -- succeed in stopping phishing attacks right in their tracks? In uniting behind an effort called DMARC.org unveiled today, the group says it can through policy-based steps filter out spoofed email that attackers use for phishing.

"Whether you are an enterprise or offering a consumer service, you can apply this policy now," says Brett McDowell, senior manager of customer security initiatives at PayPal, who is chairman of the organization DMARC, which stands for "Domain-based Message Authentication, Reporting and Conformance." The DMARC.org site today published guidelines and the specification for its technology, which makes use of the well-known standards Sender Policy Framework (SPF) and DomainKeys Identified Mail (DKIM), two basic approaches widely used today for authenticating email.

What DMARC adds is a policy-based framework of actions and reporting that email providers will follow to act on instructions from enterprise email managers to identify or even block spoofed mail exploiting any enterprise domain name. "We came together to produce a new standard, not a new technology," says McDowell. "This leverages SPF and DKIM, and it puts an end to spoofing, the most common form of email abuse."

Making use of the DMARC technology is as simple as asserting the protection policy that you, as the email manager, want enforced on behalf of your company, through a text record in DNS, says McDowell. According to the DMARC guidelines, these will include choices related to a domain name such as putting spoofed mail into a spam folder; throwing the spoofed mail away; or quarantining it. For those getting familiar with the whole DMARC concept, the decision could be made to simply ask for the identification of spoofed email without taking any other action. But DMARC backers say they have spent more than a year developing and testing the filtering technology, and that false positives are a rarity.

Read more...
Click to expand...
 
V

Vextor

Well, stopping Phishing will really help novice users, but this could easily be mis-used by the people that are behind it. Not a great idea to let the companies who sometimes promote phising to be behind, let a company like Symantec handle it.
 
Tom172

Tom172

Level 1
Feb 11, 2011
1,009
Email Giants Move to Slash 'Phishing'

Email-service providers Google Inc., Yahoo Inc., Microsoft Corp. and AOL Inc. are backing a new effort intended to dramatically reduce "phishing" emails—which attempt to trick recipients into thinking they come from a legitimate source.

The companies—along with others such as financial-service companies Bank of America Corp., FMR LLC's Fidelity Investments and eBay Inc.'s PayPal—are hoping to create an environment that allows the recipient of an email from, say, a bank, to feel secure that it isn't a trick.

To achieve that, the firms have created DMARC.org, a working group of 15 companies that plans to promote a standard set of technologies that they say will lead to more secure email.
Click to expand...

Read More
 
Jack

Jack

Administrator
Thread author
Verified
Staff Member
Well-known
Jan 24, 2011
9,378
I've got a few months ago a phishing email , in which they've tried the old 'your account will be deleted' PayPal scheme...but Google (gmail) put it right from the start in the spam folder... Of course all the signs were obvious starting from the 'sender' so I can't understand how people can fall for this cheap tricks...
If anyone can limit the magnitude of email phishing then you best bet is which this guys..
 
Status
Not open for further replies.

Similar threads

Gandalf_The_Grey
    • Like
Security News Microsoft Sway abused in massive QR code phishing campaign
Replies
0
Views
1,311
Security News
Gandalf_The_Grey
Gandalf_The_Grey
Gandalf_The_Grey
    • +Reputation
    • Wow
    • Like
Security News Bank of America warns customers of data breach after vendor hack
Replies
0
Views
1,383
Security News
Gandalf_The_Grey
Gandalf_The_Grey
oldschool
    • Like
    • +Reputation
    • Thanks
New Update Enhanced Phishing Protection in Microsoft Defender SmartScreen
Replies
11
Views
907
Windows 11
simmerskool
simmerskool

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top