igotspam
Why Phishing Works
Filed in archive by randy on April 5, 2006
SecurityFocus: Researchers at Harvard University and UC Berkeley have published a document explaining why phishing works on general users.

This paper provides the first empirical evidence about which malicious strategies are successful at deceiving general users. We first analyzed a large set of captured phishing attacks and developed a set of hypotheses about why these strategies might work. We then assessed these hypotheses with a usability study in which 22 participants were shown 20 web sites and asked to determine which ones were fraudulent. We found that 23% of the participants did not look at browser-based cues such as the address bar, status bar and the security indicators, leading to incorrect choices 40% of the time.


http://people.deas.harvard.edu/~rachna/papers/why_phishing_works.pdf

source Schneier on Security.

Related Entries:

Permalink: Why Phishing Works
Tags: phishing  spam 
Trackback: http://publish.creative-weblogging.com/publish/mt-tb.pl/19568
img Addthis img Ask img Blinklist img del.icio.us img Digg img Fark img Facebook img Google img Lycos img Ma.gnolia Add this page to Mister Wong Mr Wong img Netscape img Netvousz img Newsvine img Reddit img StumbleUpon img Slashdot img Tailrank img Technorati img Wink img Yahoo

Vote for Why Phishing Works:

  • Currently 8.00/10
  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
Rating: 8.00 out of 3 vote(s) cast.
Subscribe
Share It
RSSrss
See all blog subscribe options
Google google
What is RSS?
Yahoo! yahoo
Addthis Subscribe using any feed reader!
Bloglines Bloglines
Newsletter

TwitterFollow us on Twitter!