Re: Blocking phishing URL's

[Michael Benedetto <mbenedetto () AMNH ORG>]

We use a combination of OpenDNS Umbrella and Threatstop as well as some internal filtering to accomplish this.

Michael Benedetto
American Museum of Natural History

Sent from my iPhone

On Dec 2, 2013, at 11:07 AM, "Josh Flaherty" <Josh.Flaherty () INDSTATE EDU<mailto:Josh.Flaherty () INDSTATE EDU>> 
wrote:

We don’t block URLs but we do manually dns sinkhole some domain names and send them to an information/warning page so 
we can track who clicks the links.

Thanks,

Josh Flaherty
Information Technology Security Officer
Office of Information Technology
Indiana State University

From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Ullman, 
Catherine
Sent: Monday, December 02, 2013 10:17 AM
To: SECURITY () LISTSERV EDUCAUSE EDU<mailto:SECURITY () LISTSERV EDUCAUSE EDU>
Subject: [SECURITY] Blocking phishing URL's

Greetings!

I’ve been asked to investigate what other institutions are doing to block access to URL’s at the edge (i.e. block 
connections when people click on a URL, despite virtual hosting or fastflux DNS).

Feel free to respond privately.  Thanks.

Best,
Cathy


Dr. Catherine J Ullman
Information Security Analyst
Information Security Office
University at Buffalo
cende () buffalo edu<mailto:cende () buffalo edu>