Free Republic
Browse · Search
General/Chat
Topics · Post Article

Skip to comments.

Thunderbird gets phishing detection ( Not here yet, next release may have it )
ZDNET UK ^ | January 24, 2005, 17:05 GMT | Ingrid Marson

Posted on 01/24/2005 12:37:45 PM PST by Ernest_at_the_Beach

This story was printed from ZDNet UK, located at http://news.zdnet.co.uk/

Story URL: http://news.zdnet.co.uk/internet/security/0,39020375,39185311,00.htm

Thunderbird gets phishing detection
Ingrid Marson
ZDNet UK

January 24, 2005, 17:05 GMT

Developers have created an anti-phishing tool for the open source email application Thunderbird.

Mozilla contributor Henrik Gemal said last week in a blog that the phishing detector has been added to Thunderbird. This feature is likely to be available in the next release of Thunderbird, version 1.1, according to the Mozilla bug report.

When a user clicks on a link in an email that appears to be a phishing URL, the detector will prompt the user with a dialog box before the Web site is opened, said Gemal. The detector is triggered if the URL has a numeric IP address rather than a domain name, or if the URL does not match the address displayed in the link text.

Firefox, the Mozilla Organization's browser and Mozilla Suite, its Internet application suite, can already detect some phishing scams, according to the Mozilla news site MozillaZine.org. These applications will warn users who try to visit a URL that includes an unnecessary username -- a trick used by phishers to hide the true domain name of a site.

Earlier this month, a vulnerability was discovered in Firefox that could make users of the open source browser more likely to fall for phishing scams. This article elicited a wide range of opinions -- both from fans of the open source browser and from those who were less enamoured with it.


TOPICS: Computers/Internet
KEYWORDS: email; thunderbird

1 posted on 01/24/2005 12:37:46 PM PST by Ernest_at_the_Beach
[ Post Reply | Private Reply | View Replies]

To: ShadowAce

fyi


2 posted on 01/24/2005 12:38:16 PM PST by Ernest_at_the_Beach (A Proud member of Free Republic ~~The New Face of the Fourth Estate since 1996.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Ernest_at_the_Beach
The detector is triggered if the URL has a numeric IP address rather than a domain name, or if the URL does not match the address displayed in the link text.

Nothing fancy here (sort of like looking at the status bar before clicking a link).

3 posted on 01/24/2005 12:58:31 PM PST by newgeezer (Just my opinion, of course. Your mileage may vary.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: newgeezer

Well Outlook just says "You all, just come on in"


4 posted on 01/24/2005 2:05:50 PM PST by Ernest_at_the_Beach (A Proud member of Free Republic ~~The New Face of the Fourth Estate since 1996.)
[ Post Reply | Private Reply | To 3 | View Replies]

To: Ernest_at_the_Beach
Well Outlook just says "You all, just come on in"

Don't get me wrong. I think it's a good thing to warn the user. Now, if they could just find a way to convince the user to heed the (legitimate) warnings, ... ;O)

5 posted on 01/24/2005 2:26:28 PM PST by newgeezer (Sarcasm content: 0.0000000%)
[ Post Reply | Private Reply | To 4 | View Replies]

Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.

Free Republic
Browse · Search
General/Chat
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson