Symantec on Monday announced the formation of a group of security companies, financial institutions and Internet retailers that are banding together to help fight phishing.
Called the Symantec Phish Report Network, this group was initially formed by antiphishing vendor WholeSecurity, which Symantec acquired last September. Symantec modified the terms of membership and is relaunching the network with the participation of RSA Security, eBay, PayPal, Wells Fargo and Yahoo.
The network consists of senders, those who submit fraudulent Web site addresses that Symantec investigates and confirms are phishing sites. Symantec then distributes that information to recipients who use the information in their products to block users from visiting fraudulent Web sites.
Senders benefit from this network by reporting URLs that may be trying to trick their customers by posing as banking or retail sites. Recipients benefit by receiving vetted, up-to-date information about fraudulent sites that they can update their security products with, says David Cole, director of Symantec's security response.
Phishing attacks -- where fraudsters send e-mails that point recipients to bogus Web sites asking them to enter financial information that is then stolen -- have hit an all-time high this year, according to the Anti-Phishing Working Group (APWG), of which Symantec is a member. In March, the group received 18,480 phishing reports -- a record high -- and discovered 9,666 fraudulent Web sites.
Phishers appear to be sharpening their targets of late. In March, only 70 unique brands were spoofed, compared to a high of 121 in December of 2005, according to APWG. And, for the first time in months, a bank was the most phished brand in March, the group says.
Symantec will act as the "backbone" of the new network, using its operation center to confirm that reported sites are indeed fraudulent, and dispersing that information to network members in the form of updates. Because this requires some effort on Symantec's part, it will charge a nominal fee to members who opt to receive information from the network, Cole says. When WholeSecurity ran the network, the company charged both senders and recipients.
With the inclusion of companies such as RSA, which acquired antifraud company Cyota that focuses on the financial industry, Cole says the Phish Report Network will benefit by receiving information from many sources.
"RSA and Cyota are very important members because of their financial institution data,' says Cole.
Before the relaunch of the Phish Report Network -- when it was still being run by WholeSecurity -- there were 200 to 300 fraudulent Web sites being reported per day, says Cole. Now, with more sending companies contributing to the network, Symantec expects the network will report much larger volumes, he says.
Symantec will use the information gathered from The Phish Report Network in its own products, including it e-mail security gateway software and appliance that scan incoming e-mail messages for threats. The company says that it will make access available to the network from competitors in the e-mail security market, including companies such as Postini, IronPort, CipherTrust, and MessageLabs.
Read up on the latest ideas and technologies from companies that sell hardware, software and services. Zones provide focussed content from Computerworld and leading technology partners.
Discover how SOA can create smarter outcomes for your business.
Attend and learn:
- How SOA is helping leading companies to become more agile
- Where you should be applying SOA processes in your company
- The top SOA implementation mistakes to avoid
Click here for more information.
- +
Computerworld Live Podcast #97: The Future of Enterprise Networking 25/07/2008 09:45:36
This week CW Live chats with Mark Thompson, global sales and marketing manager for HP ProCurve, on the future of the enterprise networking. Mark discusses the trends we can expect to see in the near future and how the right infrastructure can ensure your enterprise network is secure. - +
Computerworld Live Podcast #96: Security at the Edge 11/06/2008 09:22:22
CW Live speaks with Amol Mitra, HP ProCurve Director of Marketing for Asia Pacific and Japan. Today's topic: how enterprises are starting to shift away from simply controlling security via server logins, firewalls and moving to more adaptive security frameworks. - +
Data Management Edition #10: Multi-Petascale Systems 02/05/2008 09:12:33
This week we look at sustainability and the development of multicore technologies to build multi-petascale systems. - +
IT Security Edition #11: How to poison the Storm botnet 01/05/2008 08:51:55
This week CW Live presents a case study on how to poison the notorious Storm botnet . Plus we take a look at Cisco's plans for Ironport. - +
IT Security Edition #10: Cyber-battles fought and won 24/04/2008 11:09:47
Vendors bow to end user pressure to improve product security, and we take a look at the latest concepts shaping the cyber-battlefield of the future.
Vignette Announces 2008 Excellence Awards 2008-11-21 10:50:00+11
PGP and Ponemon Institute Unveil Inaugural Australian Data Breach Study 2008 2008-11-20 17:34:00+11
Symantec Cloud Services Transform Data Centre Operations Through Proactive Management 2008-11-20 12:06:00+11
Verizon Business Offers Tips to Building a Successful Unified Communications and Collaboration Plan 2008-11-20 12:04:00+11
AARNet Brings 4K Digital Cinema to Australia: First 4K HD Video Signal delivered into Australia by AARNet 2008-11-20 12:02:00+11
Refresh your AUP: Top tips to ensure your acceptable use policy is fit for purpose
Your organisation may well have devised and implemented an Acceptable Use Policy (AUP) some time ago in order to guard against the risks of inappropriate use of computer systems by your workers, but are you confident that your AUP remains 'fit for purpose'? Read on to discover how you can enhance the effectiveness of your AUP.
Buying Guides
