This question is for my school assignment and it is due tuesday I have no ideal of what the differences are or how to evaluate themI have a question to ask how would you evaluate a legitimate web site vs. a phishing scam?
That, unfortunately, is not something we can tell you in one easy lesson. A phishing scam usually comes after you open an email, or click to enter a website deeper than the first level or first click. Any time you are being pushed to give personal information that doesn't apply to what you are doing - that's phishing. A legitimate website will most likely have SSL somewhere to tell you that anything you do or tell them is under Secure Socket Layer, or that is, they subscribe to that security process. These links may help:
http://www.itnews.com.au/News/68739,legi鈥?/a>
http://www.invested.hk/invested/html/EN/鈥?/a>
You can always check out a website with the Better Business Bureau Online. They should be able to tell you more about how to tell the difference between legitimate and fraud.
http://www.bbbonline.org/I have a question to ask how would you evaluate a legitimate web site vs. a phishing scam?
What class or school are you attending? I beleive your in my class LoL. I'm going to the Art Institute Of Pittsburgh Online. My Name is Larry. The best way is through a SSL certificate and or you internet explorer should let you know if your security is high enough. Also, if you have a pop-up blocker, the contents of that pop-up that is blocked will lead you to a Phishing site most of the time. make sure you read the pop-up being blocked carfully and only open those that you know like a download for adobe acrobat or something along those lines. mainly now a days your computer security will avoid you from going to phishing sites automaticly.I have a question to ask how would you evaluate a legitimate web site vs. a phishing scam?
When connecting with SSL (https://) the SSL certificate validates the domain name of the server.
So if you connect to https://www.somedomain.com or a subdirectory of that and you don't get a domain mismatch warning, you are ok.
You should observe that the domain on the screen is what it should be and the connection is authenticated with SSL (the lock in corner of the screen and the https prefix).
If there are more fields to the domain. E.G. somedomain.com.login.com instead of somedomain.com/login then you have a phishing scam. The actual domain is under login.com, not somedomain.com.
If you connect with http, not https, then there is nothing to validate that the server you are talking to is the one you think you are talking to. A routing attack could have taken you somewhere else.
Hi this is interesting question
Phishing is nothing but showing the same site with original sites content but from a different website name (url)
for example
u might see
www.yahoo.com
this is original
U might see sometimes www.yahoo.com/aa
or any symblos and letters after /
these are all phishing sites.
they have ideal looking sites as original but steal your valuable information.
U can trust internet explorer 7 upto an extent
but i recommend using norton internet security 2008 or norton 360 which has phishing protection, it would intimate you if u enter any phishing site.In ie 7 you can see a phishing filter in the bar below
visit http://hiyatechpark.info
http://intelpurepower.blogspot.com for more inf
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment