Phishing - Over 90% at risk
A study conducted MailFrontier shows that 92% of the 12,000 people surveyed got at least one question wrong in the 10 question email phishing survey. The study was conducted in the UK.
Over 300,000 people have tried the american version of the phishing test, and 96% got at least one question wrong.
That's pretty shocking for me, but other people I have talked to about it are not that shocked by those figures. Phishing is a bigger problem that I though. Another thing that shocks me is that many large banks have not yet setup SPF records in their DNS servers. If you want to protect the credibility of your email, you should setup Sender Policy Framework (SPF) records in your dns! DomainKeys are another possible solution to the problem - we are using both, and our mail server allows us to sign all outgoing mail with a domainkey signature.
source - Brits fail online phishing test.
Tweet
add to del.icio.us
Trackbacks
Trackback Address: 320/52D61237511502A474C2C723A903AC5C
- Phishing Attacks - Over 90% at risk ActivSoftware Blog - On Enterprise Email Software
Comments
On 04/13/2005 at 6:25:56 AM EDT Peter Boughton wrote:
1
That 92% is rather misleading - there are plenty of people who got at least one question wrong because they erred on the side of caution and marked a genuine e-mail as a scam. A better figure is probably that the average score is 7/10 correct answers; though what the remaining three are could be significant in whether that is a good score or not.
Though I agree that a lot needs to be done to properly educate both surfers & corporations about the various things they need to do/avoid. But I'll be [pleasantly] surprised if that ever actually gets done effectively.
Post a Comment
Recent Entries
- Howto Install and Run the Android Emulator
- jQuery UI Autocomple IE 6 Select List z-Index Issues
- Path Traversal Vulnerability Security Hotfix for ColdFusion Released
- Using AntiSamy with ColdFusion
- Writing Secure CFML Slides from CFUnited 2010
- Locking Down ColdFusion Presentation Slides
- Cross Domain Data Theft using CSS
- Using jQuery UI Autocomplete with Hidden ID's
Though I agree that a lot needs to be done to properly educate both surfers & corporations about the various things they need to do/avoid. But I'll be [pleasantly] surprised if that ever actually gets done effectively.
