EmailSafety.net - PayPal claims gains against phishers

PayPal claims gains against phishers

Anti-Spam Software

What is Spam?

Spam Laws

Spam Facts

User Tips

Common Email Scams

What Are Visuses?

Virus Prevention Tips

Anti-Virus Software

Basic Tips

Community

You have less than 24 hours to win $10,000 from Cisco

No pastures yet for retiring Cisco CFO Dennis Powell

Jeff Spagnola wrote first post in the new Cisco service provider blog

All security forums

Story tools

Sponsored by:

E-Mail article
Print article
Contact author	Reprint
AIM article	del.icio.us
Reddit	Digg
Stumble	Slashdot It!

Along with its parent company eBay, online payment processor PayPal has long held the inauspicious title of the Web's most frequently spoofed phishing target. However, speaking to the audience gathered at the IDC Security Forum in New York on Wednesday, Barrett highlighted a number of areas where he claims that the company is making progress.

Read the latest WhitePaper - State of Internet Security Report on Protecting Enterprise Systems

Combined with more comprehensive end-user education programs -- including new how-to instructional videos posted to YouTube that offer tips on spotting common phishing e-mails -- Barrett said that by partnering with large ISPs and Web mail services, PayPal is seeing immediate results.

Over half of all the e-mail traveling over the Internet funnels through a half dozen of the world's most popular ISPs and Webmail systems, including AOL, Gmail, Hotmail and Yahoo, the chief information security officer (CISO) said, all of whom PayPal has partnered with.

By using electronic signatures that the companies can scan to differentiate legitimate communications sent out by PayPal and eBay from all the counterfeit messages bearing the companies' names, he said, the partners are eliminating millions of phishing attempts before they ever reach end-users' in-boxes.

The notion of using electronic signatures to separate legitimate e-mail from unwanted spam and attacks is nothing new, but PayPal couldn't wait for the industry parties who have become involved with developing standards for the practice to finish their work, Barrett said.

Every e-mail sent out by the company has borne a signature of authenticity since Dec. 2006, and while most people aren't yet utilizing the extra source of data to scan for unwanted messages, PayPal's partners are doing so with great success, he said.

"Rather than relying on the consumer, we're saying let's simply block the e-mails unless we can guarantee that they are signed," Barrett said. "By working with these partners we're finding that we can block several million e-mails per week that would have otherwise reached our customers; this also allows us to gather real-time information about what the bad guys are up to."

1 | 2 | 3 | Next >

For more enterprise computing news, visit InfoWorld. Story copyright InfoWorld Media Group, Inc.

Recent News:

· McColo takedown: Vigilantism or Neighborhood Watch?
· Spam drop could boost Trojan attacks
· Hosting firm shutdown forces botnets to relocate
· ISP cut off from Internet after security concerns
· Spam plummets after hosting service shuttered

Site Map | Recent News | Related Sites

Other stories on this topic

Community

Story tools

Sponsored by: