Primero_247
Carder
- Messages
- 53
- Reaction score
- 19
- Points
- 8
The Anti-Phishing Working Group (APWG) and Carnegie Mellon University’s CyLab Usable Privacy and Security Laboratory (CUPS) will announce tomorrow the deployment of their real-time counter-eCrime education system designed to instruct consumers the moment they’ve been pulled into a phishing scam.
The AWPG/CUPS Phishing Education Landing Page Program delivers online safety education - free - to consumers who’ve clicked on links in phishing mails by redirecting them away from the URLs of decommissioned phishing websites onward to a page of Internet security and safety instruction hosted by the APWG.
The goal of this initiative is to instruct the most at-risk consumers about online safety at the “most teachable moment” when they have just clicked on a link in a phishing communication, a key moment of error discovery in which one is more receptive to instruction - and better able to retain its essential messages.
The Phishing Education Landing Page is here: http://education.apwg.org/r/
A project description is here: http://education.apwg.org/r/about.html
Project white paper is posted here: http://www.antiphishing.org/reports/APWG_CMU_Landing_Pages_Project.pdf
Dr. Laura Mather, director of operational policy at APWG and co-chair of the APWG’s Internet Policy Committee, an in-house think tank of security, law enforcement, technology and industrial policy professionals said, “It’s inspiring to see so many people from different aspects of the electronic crime fighting community come together for this vital online consumer safety project. Through this initiative, so many from industry, government and law enforcement have volunteered time, resources, and energy and having it all come together to protect global online consumers is incredible.”
The APWG’s members, research collaborators and CUPS have been working together on the project since the APWG’s 2007 Fall eCrime Researchers Summit in Pittsburgh, the APWG’s peer-reviewed research conference, where they were inspired by a paper delivered by then-CMU graduate student Ponnurangam Kumaraguru, an assistant professor at Indraprastha Institute of Information Technology (IIIT) in Delhi, about the utility of a redirect system in helping to education users.
Dr. Mather and the APWG/IPC members worked with CUPS’ principals to craft the landing page content based on Prof. Kumaraguru’s initial draft, incorporating advice representing the kind of safety and security guidelines they thought most important to teach consumers in the short time their attention would be held by the landing page.
“Our research has shown that most Internet users don’t know very much about online scams and don’t realize that there are some simple things they can do to protect themselves,” said Dr. Lorrie Cranor, an associate professor of computer science and engineering & public policy at Carnegie Mellon and director of the CyLab Usable Privacy and Security Laboratory. “People aren't interested in computer safety courses. But we’ve demonstrated that users are receptive to on-line safety instruction immediately after they fall for a phishing attack and they tend to remember this instruction."
APWG Deputy Secretary General Foy Shiver and the APWG’s Internet Safety Engineers pulled together a PHP system to respond to the inbound redirects from Internet Service Providers who are participating in the program. The system parses the language setting for the browser and browser type used by the redirected consumer, responding in the appropriate language and content format: illustrated pages for PCs and laptops; text-only pages for handheld devices. ISPs looking for more information on the redirect system can look here: http://education.apwg.org/r/how_to.html
Greg Ogorek, Manager of Anti-Phishing Operations at long-time APWG member company Cyveillance, has assembled a large corps of volunteer translators with Dr. Mather to complete translations of the landing page for every known language in which phishing is a problem. The APWG’s goal is to make this public-education utility available to every online consumer and provide them with useful counter-ecrime advice in their own language.
Ogorek and Mather will be reviewing the development of the landing page project at the APWG’s eCrime Researchers Summit in Tacoma on Tuesday, October 20, as part of the “Consumers, Human Factors and eCrime” segment of the conference. Agenda details are here: http://www.antiphishing.org/events/2009_gm.html
“Phishing attacks, the most common and profitable scams for criminals, rely on human interaction to effectively carry out online fraud against Internet users worldwide,” said Ogorek, Manager of Anti-Phishing at Cyveillance. “We are dedicated to supporting the work APWG is doing in conjunction with Carnegie Mellon University to implement this important landing page initiative to educate consumers on online safety and to provide them with the necessary tools to avoid phishing attacks no matter what language they may originate.”
So far, Ogorek and his polyglot corps of volunteers have completed translations for versions of the phishing education landing page in Arabic, Chinese (Mandarin), Danish, Dutch, German, Greek, English (UK), English (US), Spanish, Filipino, French, Hebrew, Hungarian, Italian, Japanese, Portuguese (Brazilian), Romanian, Russian and Ukrainian. Translations for versions in Afrikaans, Basque, Bulgarian, Catalan, Croatian, Czech, Hindi, Korean, Bahasa Malaysia, Norwegian, Polish, Portuguese, Swedish, Urdu and Vietnamese are underway – or waiting for volunteer translators to step up. Interested volunteers can send inquiries to: admin@antiphishing.org.
APWG Secretary General Peter Cassidy said, “Global challenges to the public order on the Internet require solutions that scale to the size and shape of the threat and provide a public health initiative model of response. This public-education utility, leveraging the URLs that the eCrime gangs establish during phishing campaigns does just that. Every one of those decommissioned counterfeit sites can now be replaced by an educational resource for every consumer on earth who falls for a phishing email link.”
The AWPG/CUPS Phishing Education Landing Page Program delivers online safety education - free - to consumers who’ve clicked on links in phishing mails by redirecting them away from the URLs of decommissioned phishing websites onward to a page of Internet security and safety instruction hosted by the APWG.
The goal of this initiative is to instruct the most at-risk consumers about online safety at the “most teachable moment” when they have just clicked on a link in a phishing communication, a key moment of error discovery in which one is more receptive to instruction - and better able to retain its essential messages.
The Phishing Education Landing Page is here: http://education.apwg.org/r/
A project description is here: http://education.apwg.org/r/about.html
Project white paper is posted here: http://www.antiphishing.org/reports/APWG_CMU_Landing_Pages_Project.pdf
Dr. Laura Mather, director of operational policy at APWG and co-chair of the APWG’s Internet Policy Committee, an in-house think tank of security, law enforcement, technology and industrial policy professionals said, “It’s inspiring to see so many people from different aspects of the electronic crime fighting community come together for this vital online consumer safety project. Through this initiative, so many from industry, government and law enforcement have volunteered time, resources, and energy and having it all come together to protect global online consumers is incredible.”
The APWG’s members, research collaborators and CUPS have been working together on the project since the APWG’s 2007 Fall eCrime Researchers Summit in Pittsburgh, the APWG’s peer-reviewed research conference, where they were inspired by a paper delivered by then-CMU graduate student Ponnurangam Kumaraguru, an assistant professor at Indraprastha Institute of Information Technology (IIIT) in Delhi, about the utility of a redirect system in helping to education users.
Dr. Mather and the APWG/IPC members worked with CUPS’ principals to craft the landing page content based on Prof. Kumaraguru’s initial draft, incorporating advice representing the kind of safety and security guidelines they thought most important to teach consumers in the short time their attention would be held by the landing page.
“Our research has shown that most Internet users don’t know very much about online scams and don’t realize that there are some simple things they can do to protect themselves,” said Dr. Lorrie Cranor, an associate professor of computer science and engineering & public policy at Carnegie Mellon and director of the CyLab Usable Privacy and Security Laboratory. “People aren't interested in computer safety courses. But we’ve demonstrated that users are receptive to on-line safety instruction immediately after they fall for a phishing attack and they tend to remember this instruction."
APWG Deputy Secretary General Foy Shiver and the APWG’s Internet Safety Engineers pulled together a PHP system to respond to the inbound redirects from Internet Service Providers who are participating in the program. The system parses the language setting for the browser and browser type used by the redirected consumer, responding in the appropriate language and content format: illustrated pages for PCs and laptops; text-only pages for handheld devices. ISPs looking for more information on the redirect system can look here: http://education.apwg.org/r/how_to.html
Greg Ogorek, Manager of Anti-Phishing Operations at long-time APWG member company Cyveillance, has assembled a large corps of volunteer translators with Dr. Mather to complete translations of the landing page for every known language in which phishing is a problem. The APWG’s goal is to make this public-education utility available to every online consumer and provide them with useful counter-ecrime advice in their own language.
Ogorek and Mather will be reviewing the development of the landing page project at the APWG’s eCrime Researchers Summit in Tacoma on Tuesday, October 20, as part of the “Consumers, Human Factors and eCrime” segment of the conference. Agenda details are here: http://www.antiphishing.org/events/2009_gm.html
“Phishing attacks, the most common and profitable scams for criminals, rely on human interaction to effectively carry out online fraud against Internet users worldwide,” said Ogorek, Manager of Anti-Phishing at Cyveillance. “We are dedicated to supporting the work APWG is doing in conjunction with Carnegie Mellon University to implement this important landing page initiative to educate consumers on online safety and to provide them with the necessary tools to avoid phishing attacks no matter what language they may originate.”
So far, Ogorek and his polyglot corps of volunteers have completed translations for versions of the phishing education landing page in Arabic, Chinese (Mandarin), Danish, Dutch, German, Greek, English (UK), English (US), Spanish, Filipino, French, Hebrew, Hungarian, Italian, Japanese, Portuguese (Brazilian), Romanian, Russian and Ukrainian. Translations for versions in Afrikaans, Basque, Bulgarian, Catalan, Croatian, Czech, Hindi, Korean, Bahasa Malaysia, Norwegian, Polish, Portuguese, Swedish, Urdu and Vietnamese are underway – or waiting for volunteer translators to step up. Interested volunteers can send inquiries to: admin@antiphishing.org.
APWG Secretary General Peter Cassidy said, “Global challenges to the public order on the Internet require solutions that scale to the size and shape of the threat and provide a public health initiative model of response. This public-education utility, leveraging the URLs that the eCrime gangs establish during phishing campaigns does just that. Every one of those decommissioned counterfeit sites can now be replaced by an educational resource for every consumer on earth who falls for a phishing email link.”
