CNET's spyware, viruses, & security forum is the best source for finding the latest news, help, and troubleshooting advice from a community of experts. Discussions cover how to detect, fix, and remove viruses, spyware, adware, malware, and other vulnerabilities on Windows, Mac OS X, and Linux.
PhishGuard is a FREE service that detects and rapidly disables Internet "phishing" or "spoofing" attacks designed to steal critical financial data.
Phishing attacks use fraudulent websites and emails that mimic well-known organizations in order to trick unsuspecting Internet users. A simple login or account number entry screen becomes a sophisticated trap. By assuming you are dealing with a trusted party, you can reveal financial information including credit card numbers, bank accounts, passwords, and social security numbers to the "bad guys". This type of attack is very difficult for the typical person to detect, as the scammer's emails and websites mimic the exact style and graphics of the spoofed company, and appear genuine. Sensitive financial information disclosed to scammers is used to make fraudulent financial transactions and to enable long-term identity theft.
Organizations recently impersonated by phishers have included eBay, Citibank, Federal Deposit Insurance Corporation (FDIC), PayPal, AOL, Visa, Bank One, EarthLink, Microsoft, AT&T, Yahoo, Chase, and numerous others. You can view examples at http://www.phishguard.com/supportresources.htm
PhishGuard is a simple, free software service. The first person to discover a suspected phishing scam can report the offending email or URL (website address), literally in seconds. There is no need to divulge any confidential information to the scammers. Within minutes, our monitoring team has verified the scam, and added it to the ScamBase database. Updates to the database are rapidly distributed to every participating computer, effectively immunizing them against the newly discovered scam.
The PhishGuard system utilizes the collective observations of Internet users plus a rapid server-based submission and distribution system. This unique architecture dramatically reduces the chance that any phishing scam can "slip through the cracks" and blindside an unsuspecting Internet user.