Phishing domains should be quarantined - security company
Posted on 6 Dec 2006 at 15:42
F-Secure has issued an open letter to the domain-registration industry, calling on them to proactively deny the registration of domains clearly destined to become phishing sites.
It notes a recent registration of 'signin-ebay-c.com' with registrar directNIC, which is currently being run as a phishing site. Contact details for the domain are an anonymous gmail address and a phoney phone number: 123142311.
'Wouldn't it make sense for a registrar to filter such obvious registrations and have a real person review and approve them before they go through? At least check who the domain is being registered to in case it's obviously an imaginary person,' it reads.
In March, F-Secure ran a search of domains using the names of well-known banks and found thousands registered, many of which were phish sites.
Strato, which recently launched a domain-only service into the UK said that it found there was a 'demand from Asian companies that want to register domains in the UK'.
According to CTO Rene Wienholtz, Strato does investigate the provenance of domain applications it receives. 'We take measures to find out when the customer orders - we call every customer to be sure that the phone line exists... We feel that a cheap domain-only market in the UK should be secured against misuse,' he said.
Author: Matt Whipp
advertisement
- What's that eggy smell in the server room?
- How to change the default template in Word 2007
- Book review: Rework by Jason Fried and David Heinemeier Hansson
- Panorama parents deserve their file-sharing fine
- Google and BT offer free website service to British businesses
- Lords' last chance to protect broadband customers
- Extreme handwriting recognition on the Dell Latitude XT2
- 12 surprising things that Wolfram Alpha knows
- Nokia N900: phone or pocket computer?
- The sinister side of Spotify
- Avira Premium Security Suite 9
- ZoneAlarm Internet Security Suite
- Webroot Internet Security Essentials
- Trend Micro Internet Security
- PC Tools Internet Security 2009
- Panda Internet Security 2009
- Norton Internet Security 2009
- Kaspersky Internet Security 2009
- F-Secure Internet Security 2009
- Eset Smart Security
- Delving into the Norton 2010 line-up
- How to commit Facebook suicide
- Microsoft must stop silently installing browser plugins
- Poking into Facebook security
- Has Microsoft shot itself in the foot with Security Essentials?
- Wi-Fi hacking: don't panic yet
- Gary McKinnon deserves prosecution not extradition
- Sex and online security: how much danger are we really in?
- Security without penalty
- The spam is out, but the viruses are in
advertisement
Printed from www.pcpro.co.uk