Thursday, October 05, 2006

PhishTank Joins the War on Phishing

OpenDNS has started a new antiphishing site called PhishTank. Upon becoming a registered member, one can submit a suspected site (phish) and even help verify (whether or not) the sites are actually malicious.

Phishing is behind a lot of financial crimes, normally related to identity theft.

OpenDNS plans to make the data collected from this effort free for developers interested in building anti-phishing applications.

Besides collecting data at PhishTank, other sources will be used, such as Support Intelligence, Team Cymru and CastleCops.

CastleCops and Sunbelt Software run the PIRT (Phishing Incident Reporting and Termination Squad) , which I have blogged about before.

It's great to see this type of teamwork in the IT world. Despite all efforts, the phishing problem keeps growing and "do it yourself phishing kits" (openly sold on the Internet) have made this type of criminal activity too easy to do.

Hopefully, law enforcement is going take advantage of this data. Prevention and awareness will stop a lot of phishing, but sending some of the phishermen to jail sends a strong message, also.

If you are interested in assisting the community at PhishTank, link here.

1 comment:

Anonymous said...

That's excellent. I also recently found this article which discusses a possible solution to the phishing pandemic.