Wednesday, July 15, 2020
  • Home
  •             

Let’s all go Phishing — with a little help from Microsoft

September 6th, 2005 by Patrick Elliott

Okay okay, first of all, with the definition of Phishing being a negative one — a fradulant site attempting to steal personal information, we don’t really want to go “Phishing”, but a new beta add on for Microsoft’s MSN toolbar can help you stay safe from those nasty “Phisherman” out there looking to steal your identity.

With Microsoft’s Get Secure, Stay Secure attitude these days, I wasn’t suprised to see this offered as a free download either, and, what’s best is that it integrates right in with the MSN toolbar.

Check out http://addins.msn.com/phishingfilter/

It’s the same technology being added to Internet Explorer 7, but if you don’t have access to IE 7, be sure to download the MSN toolbar at http://toolbar.msn.com and you can have access to the same Anti-Phishing technology.

And if the information page about the download isn’t enough, Microsoft went even further creating a 2-3 minute video explaining Phishing and how you can protect yourself against it, you can see that and read more about ways to protect your computer at: http://safety.msn.com/phishing , or a more direct link right to the video: http://www.microsoft.com/athome/security/email/phishing/video1.mspx

Patrick Elliott

Posted in MS News, Products, Security | 11 Comments »


This entry was posted on Tuesday, September 6th, 2005 at 2:21 am and is filed under MS News, Products, Security. You can follow any responses to this entry through the RSS 2.0 feed. Both comments and pings are currently closed.


11 Responses

  1. Patrick S Says:

    Woah, Hey thanks Patrick… I will give it a go… is this one pubic beta with regards to a public NG?

  2. Patrick E Says:

    I am not sure if there is a newsgroup for it, it’s a public beta in the same way MS Antispyware is a public beta. I’ll look into it though!

  3. Patrick S Says:

    TY Pat…

  4. linja didi Says:

    tank que fery march…Patric E

    I’ve got some questions listed below:

    1)How to become a real Phisherman?
    2)How to avoid the Phishing sites being detected by msn toolbar?
    3)What mainly data the Phisherman steal from ones?

    Just curious bout that..I’m not expecting you will answer me, but hoping to.
    I’m asking all the questions because if you want to protect must know how they attack first.

    cheers,
    linja didi

  5. Patrick S Says:

    Of course we will answer because we are the MSBLOg team 🙂

    I can answer #3 right now: They usually steel credit card numbers/trick you into depositing money into their bank account. This lure for “Phisherman (as you called them) because its they payoff at the end of the day…

  6. linja didi Says:

    Thank you for spending your valuable time to answer my questions.

    But, do you think that the police or any related organisations will catch those Phishermans? Look, sitation is here, if msn toolbars can detect one’s site suspected to be phising site, will it report to the police. But which country should resposible to the site if the site hosted in USA but the owner is live in UK? Ehm..just wondering..
    Are the police able to catch those hi-tech guys?
    Hope you don’t mind I ask so many questions at once.

  7. Patrick E Says:

    Yes and no, countries such as the US (and I can only speak to the US as I live here) have strict anti-fraud laws and if the person “phishing” or stealing / attempting to steal personal information is in the US or any country that US law enforcement has rights to apprehend criminals (such as — in limited circumstances — the UK w/ assistance from UK authorities) then the FBI will assist local authorities in that country with filing criminal charges against the site, or here in the US, will file charges against the site w/ assistance of the US Attorney General’s office. See http://www.ifccfbi.gov for more information on the United States Internet Fraud Complaint Center

  8. Jabez Gan Says:

    Patrick E has answered most of the questions, and here are some additional information. THis phishing tool by MSN will not auto send information to the police when it has suspected any websites to be a phishing sites.

    Basically this is how it works:

    Phishing sites are found and reported to MSN Phishing server. When users access the sites, it will check with the MSN Phishing server in real time and see if it’s a blacklisted site.

    For more information on how it works, see:
    http://blogs.msdn.com/ie/archive/2005/08/31/458663.aspx
    http://msdn.microsoft.com/library/default.asp?url=/library/en-us/IETechCol/dnwebgen/MSPhishingFilterWP.asp

    BTW, check with a lawyer working in the UK regarding one of your question.. 😛

  9. Patrick S Says:

    I guess they get reported and they trace it all back through IP addresses… I mean the fake site has to be hosted somewhere…
    Though they prob route through several diff places 😛

  10. Patrick E Says:

    Thats exactly what they do, but if the host resides outside of the USA, it’s VERY hard for the US Authorities to do much about it. The unfortunante case about a lot of these sites, is that they are hosted in countries the US doesn’t have much (if any) diplomatic relations with, so it’s nearly impossible to do anything other then warn and inform the public about the problem.

  11. Patrick E Says:

    Also — this site may or may not be useful to those residing in the UK (Since I live in the US, it may look useful to me but is not my place to say definitively whether it is or not..) http://www.homeoffice.gov.uk/crime/internetcrime/