{"id":48,"date":"2005-12-07T19:43:00","date_gmt":"2005-12-08T02:43:00","guid":{"rendered":"http:\/\/paulgillin.com\/2005\/12\/phish-story.html"},"modified":"2005-12-07T19:43:00","modified_gmt":"2005-12-08T02:43:00","slug":"phish-story","status":"publish","type":"post","link":"https:\/\/gillin.com\/blog\/2005\/12\/phish-story\/","title":{"rendered":"Phish story"},"content":{"rendered":"<p><a onblur=\"try {parent.deselectBloggerImageGracefully();} catch(e) {}\" href=\"https:\/\/pics.ebaystatic.com\/aw\/pics\/navbar\/eBayLogoTM.gif\"><img style=\"margin: 0pt 0pt 10px 10px; float: right; cursor: pointer; width: 200px;\" src=\"https:\/\/pics.ebaystatic.com\/aw\/pics\/navbar\/eBayLogoTM.gif\" alt=\"\" border=\"0\" \/><\/a><\/p>\n<p>Network World has a <a href=\"https:\/\/www.networkworld.com\/news\/2005\/120605-ebay-phishing.html?nlhtsec=120505securityalert2\">story today<\/a> about a phishing exploit that was so realistic that even Ebay&#8217;s anti-spoofing team believed it was authentic. The blogger who <a href=\"https:\/\/richi.co.uk\/blog\/2005\/12\/ebays-anti-phishing-desk-sucks.html\">first reported the incident<\/a> says that he reported the suspicous e-mail to Ebay but was brushed off, even though there were several characteristics of the message that just didn&#8217;t make sense. That&#8217;s a pretty depressing commentary on the state of phishing, considering that Ebay is probably the most exploited domain the phishing world. I&#8217;m sure just about everyone has seen a convincing come-hither message purportedly from Ebay that really referenced a server in Eastern Europe somewhere.<\/p>\n<p>I think 2006 will be the year that phishing takes center stage in the media coverage of computer security. It was all about spyware this year, but spyware is a slippery and often hard-to-define concept. Phishing, at least, you can understand. Unfortunately, phishing is also one of the most effective identity theft tactics there is. I was personally taken in by a phishing attack several years ago before I realized my mistake and had to scramble to change my Ebay password. And I&#8217;m presumably a lot more savvy about this stuff than the average user.<\/p>\n<p>If phishers are good enough to fool even the trained investigators at Ebay, I think we&#8217;re in for a long year of creative and effective attacks.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Network World has a story today about a phishing exploit that was so realistic that even Ebay&#8217;s anti-spoofing team believed it was authentic. The blogger who first reported the incident says that he reported the suspicous e-mail to Ebay but &hellip; <a href=\"https:\/\/gillin.com\/blog\/2005\/12\/phish-story\/\">Continue reading <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"spay_email":""},"categories":[1],"tags":[],"jetpack_featured_media_url":"","jetpack_shortlink":"https:\/\/wp.me\/pTy95-M","_links":{"self":[{"href":"https:\/\/gillin.com\/blog\/wp-json\/wp\/v2\/posts\/48"}],"collection":[{"href":"https:\/\/gillin.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/gillin.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/gillin.com\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/gillin.com\/blog\/wp-json\/wp\/v2\/comments?post=48"}],"version-history":[{"count":0,"href":"https:\/\/gillin.com\/blog\/wp-json\/wp\/v2\/posts\/48\/revisions"}],"wp:attachment":[{"href":"https:\/\/gillin.com\/blog\/wp-json\/wp\/v2\/media?parent=48"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/gillin.com\/blog\/wp-json\/wp\/v2\/categories?post=48"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/gillin.com\/blog\/wp-json\/wp\/v2\/tags?post=48"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}