Re: Request for comments - anti-phishing approach
From: Unruh (unruh-spam_at_physics.ubc.ca)
Date: 05/29/05
- Previous message: douglas.ross_at_gmail.com: "Request for comments - anti-phishing approach"
- In reply to: douglas.ross_at_gmail.com: "Request for comments - anti-phishing approach"
- Next in thread: douglas.ross_at_gmail.com: "Re: Request for comments - anti-phishing approach"
- Reply: douglas.ross_at_gmail.com: "Re: Request for comments - anti-phishing approach"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 29 May 2005 17:49:17 GMT
douglas.ross@gmail.com writes:
>I blogged regarding a concept that financial institutions could employ
>to combat phishers. I'd be interested in any critiques, negative or
>positive.
The font face "protection" is irrelevant. No customer is going to be
bothered that the relevant info is in a different typeface. That just looks
like emphasis calling attention to crucial data.
Giving out info on the customer (cheque number) to anyone who calls in as
that customer, without any authentication would be irresponsible on the
part of the bank.
Finally, the customers will not care if the phishing page does not look
exactly like the BofA page. Things change far far too often for customers
to constantly track whether the change is legitimate or not. Remember that
phishers are catching the less knowledgeable and observant segment of the
population anyway.
>http://directorblue.blogspot.com/2005/05/phishing-how-banks-can-fight-back-true.html
>Regards, Doug
- Previous message: douglas.ross_at_gmail.com: "Request for comments - anti-phishing approach"
- In reply to: douglas.ross_at_gmail.com: "Request for comments - anti-phishing approach"
- Next in thread: douglas.ross_at_gmail.com: "Re: Request for comments - anti-phishing approach"
- Reply: douglas.ross_at_gmail.com: "Re: Request for comments - anti-phishing approach"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
