RE: The solution to Phishing

[Blanchard_Michael () emc com]

Oh!  I like that!  

That way the customer that fell for the phishing scam, is STILL a revenue
generating source for the bank ;-) 


Michael P. Blanchard 
Antivirus / Security Engineer, CISSP, GCIH, MCSE, MCP+I 
Office of Information Security & Risk Management 
EMC ² Corporation 
4400 Computer Dr. 
Westboro, MA 01580 
email:  Blanchard_Michael () EMC COM 

-----Original Message-----
From: funsec-bounces () linuxbox org [mailto:funsec-bounces () linuxbox org] On
Behalf Of Jim Murray
Sent: Monday, October 24, 2005 4:20 PM
To: funsec () linuxbox org
Subject: Re: [funsec] The solution to Phishing

Blanchard_Michael () emc com wrote:
>  The banks should send out bogus messages just like a real phishing attack
> and set up a bogus web site that looks just like their real one.  If a
> customer logs into that site from the phishing e-mail, their internet
> banking privledges are revoked for 30 days.  If it happens again, their
> internet privledges are revoked completely.
>
>   Done and dusted... Kinda like darwinism with a second chance on life ;-)

No, no... treble bank charges for 6 months, a £250.00 'administration'
penalty for changing their login details and an increas in the interest
rate on borrowing for 6 months to cover potential losses due to user
stupidity.

THAT would soon stop phishing!

Jim.

-- 
      DigitalDaemons IT Services.
---------------------------------------
   E-Mail : jim () digitaldaemons co uk
  Web : http://www.digitaldaemons.net
_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.