|
|
Anti PhishingPhishing or Pharming is a technique used by e-mail spammers to capture information such as username, passwords, and bank account numbers from the users unwittingly. Spammers send e-mails pretend to arrive from PayPal, amazon.com, ebay, and major banks with a link to a fake site imitated to look exactly like the real sites. E-mail generally has a clever subject line designed to alarm or entice users into performing an action outlined in the e-mail. For example, subject lines such as: PayPal® Account Review Department or NatWest Bank: Confirmation Required! Unsuspected users click on the link imbedded in the e-mail and vist the fake website and enter login information which is then captured by the spammer and used to possibly conduct criminal activity. How ITA Secure Messaging Processes Phishing SpamITA Secure Messaging detects and blocks these types of e-mails using sophisticated techniques. Each arriving e-mail is processed and analyzed:
Sender e-mail address domain is verified to make sure the MX ip address matches with the domain name. It Is verified that the e-mail is coming from the domain name it claims to be.
Imbedded links are verified to make sure they are sent to the real domain such as ebay.com, paypal.com and not to the fake websites setup by the spammer. Common technique used by spammer to fool users is that the link name appears to be name such as http://accountverification.ebay.com but the actual link is set to go to a fake site for example http://192.168.1.10. ITA Secure messaging checks for these types of tricks and blocks these emails as spam.
Real time anti phishing database is maintained and constantly updated in real- time by the IT Networks and used by ITA Secure Messaging servers to determine if the e-mail originating from an ip is a known phishing spam sender. 
Anatomy of a Phishing Spam E-mail
|
|
|
