Skip to comments.Thunderbird gets phishing detection ( Not here yet, next release may have it )
Posted on 01/24/2005 12:37:45 PM PST by Ernest_at_the_Beach
This story was printed from ZDNet UK, located at http://news.zdnet.co.uk/
Story URL: http://news.zdnet.co.uk/internet/security/0,39020375,39185311,00.htm
Thunderbird gets phishing detection
January 24, 2005, 17:05 GMT
Developers have created an anti-phishing tool for the open source email application Thunderbird.
Mozilla contributor Henrik Gemal said last week in a blog that the phishing detector has been added to Thunderbird. This feature is likely to be available in the next release of Thunderbird, version 1.1, according to the Mozilla bug report.
When a user clicks on a link in an email that appears to be a phishing URL, the detector will prompt the user with a dialog box before the Web site is opened, said Gemal. The detector is triggered if the URL has a numeric IP address rather than a domain name, or if the URL does not match the address displayed in the link text.
Firefox, the Mozilla Organization's browser and Mozilla Suite, its Internet application suite, can already detect some phishing scams, according to the Mozilla news site MozillaZine.org. These applications will warn users who try to visit a URL that includes an unnecessary username -- a trick used by phishers to hide the true domain name of a site.
Earlier this month, a vulnerability was discovered in Firefox that could make users of the open source browser more likely to fall for phishing scams. This article elicited a wide range of opinions -- both from fans of the open source browser and from those who were less enamoured with it.
Nothing fancy here (sort of like looking at the status bar before clicking a link).
Well Outlook just says "You all, just come on in"
Don't get me wrong. I think it's a good thing to warn the user. Now, if they could just find a way to convince the user to heed the (legitimate) warnings, ... ;O)