Phishing

(redirected from Phishing site)
Also found in: Dictionary, Encyclopedia.

Phishing

The illegal practice of attempting to steal an identity by setting up a website and encouraging people to input credit card or other personal information. Phishing often purports to present a legitimate web business and asks the "customer" to give personal information in order to receive fictitious products. Alternatively, phishing may involve a criminal sending out e-mail purporting to be from a bank or credit card company asking for information as part of an "urgent" request. Phishers then steal the identity directly or sell to another party for illegal purposes.

Phishing.

Phishing is one way that identity thieves use the Internet to retrieve your personal information, such as passwords and account numbers.

The thieves' techniques include sending hoax emails claiming to originate from legitimate businesses and establishing phony websites designed to capture your personal information.

For example, you may receive an urgent email claiming to come from your bank and directing you to a website where you're asked to update or verify your account number or password. By responding you give identity thieves an opportunity to steal your confidential information.

Phishing is difficult to detect because the fraudulent emails and websites are often indistinguishable from legitimate ones and the perpetrators change identities regularly.

Mentioned in ?
References in periodicals archive ?
The address of the official Libra website is 'www.calibra.com.' Calibra is the crypto-wallet for Libra, but the phishing site has changed the 'i' in Calibra into an accented 'i' that is easily missed at first glance.
If any of domain matched with the current website, then declare it a legitimate or otherwise make it a phishing site.
These tools have built-in features which use blacklists and/or URL/web page heuristics to detect phishing sites.
When features of a site are similar to the ones of a phishing site, the entry site will be identified as a phishing one.
According to the statistics of PhishTank, over 1.3 million phishing sites are verified and registered in its database merely in the first two years after its launch.
Furthermore, PhishTank has explicitly designed its blacklist to be helpful to defenders (especially ISP 'abuse teams'), adding features such as searches for phishing sites based on ASNs and RSS feeds of new entries within an ASN.
* PhishTank's database of fresh phishing submissions is sometimes polluted since anyone can submit a website (we even found BitDefender's website submitted as a possible phishing site).
Among the other techniques used by phishers are addressing victims using their real name, sending e-mail that appears to come from a trusted friend or coworker, using a Web address for the phishing site that's very close to that of the real site, featuring images at the phishing site that were stolen from the real site, using links at the phishing site that connect to the real site, and employing scripts at the phishing site that place a picture of the real Web address over the address bar.
However, even though law enforcement might not be able to shut down a phishing site due lack of jurisdiction, authorities should still be notified as soon any attacks are identified (Britt, 2005).
When a site is determined to be a potential Phishing site, the ZILLAbar displays a Phishing Alert in real time.
For example, modules in the software can notify you if you are visiting a known phishing site or if you are being redirected to a Web site that looks like the one you want to visit but is actually a fake.