Website Promotion
  Home arrow Website Promotion arrow What Phishers Can Teach You
SEO Chat Forums  
Choosing Keywords  
Google Optimization  
Link Trading  
MSN Optimization  
Search Engine News  
Search Engine Spiders  
Search Optimization  
Web Directories  
Website Marketing  
Website Promotion  
Website Submission  
Yahoo Optimization  
SEO Tools
Adsense Calculator
AdSense Preview
Advanced Meta-Tags
Alexa Rank Tool
Check Server Headers
Class C Checker
Code to Text Ratio
CPM Calculator
Domain Age Check
Domain Typos
Future PageRank
Google Dance
Google Keywords
Google Search
Google Suggest
Google vs Yahoo
Indexed Pages
Keyword Cloud
Keyword Density
Keyword Difficulty
Keyword Optimizer
Keyword Position
Keyword Typos
Link Popularity
Link Price Calculator
Meta Analyzer
Meta Tag Generator
Multiple Link Popularity
Page Comparison
Page Size
PageRank Lookup
PageRank Search
Robots.txt Generator
ROI Calculator 
S.E. Comparison 
S.E. Keyword Position 
Site Link Analyzer 
Spider Simulator 
URL Redirect Check 
URL Rewriting 
Mobile Linux 
APP Generation ROI 
IBM® developerWorks 
SEO Weekly Newsletter
 
Developer Updates  
Free Website Content 
 RSS  Articles
 RSS  Forums
 RSS  All Feeds
Write For Us Get Paid 
Request Media Kit
Contact Us 
Site Map 
Privacy Policy 
Support 
 USERNAME
 
 PASSWORD
 
 
  >>> SIGN UP!  
  Lost Password? 
WEBSITE PROMOTION

What Phishers Can Teach You
By: Terri Wells
  • Search For More Articles!
  • Disclaimer
  • Author Terms
  • Rating: 4 stars4 stars4 stars4 stars4 stars / 12
    2006-10-02

    Table of Contents:
  • What Phishers Can Teach You
  • How Users Sniff Out Bogus Sites
  • How Well Did They Do?
  • What Does This Mean?

  • Rate this Article: Poor Best 
      ADD THIS ARTICLE TO:
      Del.ici.ous Digg
      Blink Simpy
      Google Spurl
      Y! MyWeb Furl
    Email Me Similar Content When Posted
    Add Developer Shed Article Feed To Your Site
    Email Article To Friend
    Print Version Of Article
    PDF Version Of Article
     
     
    ADVERTISEMENT


    What Phishers Can Teach You


    (Page 1 of 4 )

    What makes a web site look legitimate? This question is of more than academic interest, since web surfers will only buy from sites they consider trustworthy. A recent study published by Harvard and Berkeley scholars revealed some surprising information. Keep reading to find out what phishers have already learned.

    If you want to read the ten-page study itself, you can check it out at this link. But I feel that I must warn you, it’s not for those who have weak stomachs, especially if you’re a systems administrator. Of course, you could tell that much from the title: “Why Phishing Works.”

    The three authors (Rachna Dhamija, J. D. Tygar, and Marti Hearst) had certain theories about why phishing attacks work, based on their analysis of a large database of captured phishing attacks. They then designed a usability study in which they enlisted 22 participants to test these theories. While the study was created to answer the question of what makes a bogus site credible, it has interesting implications for anyone dealing with web site design (including many SEOs).

    As with any good study, the authors read related work, including studies of browser security and phishing. From this work and their analysis, they formulated the hypothesis that phishers take advantage of their victims in three ways. First, they count on their victims’ lack of knowledge about computer systems and security indicators. Second, they use visually deceptive text (such as “typejacking attacks” that use similar-looking URLs), images, and similar means to mask the true identity of their fake web site. Third, they simply hope the user will not pay attention to either the presence or absence of security indicators.

    The nature of the study the authors devised was fairly simple. They recruited 22 participants of varying ages, education levels, computer activity/experience, and both sexes. Using a laptop computer, they presented these participants with 20 websites in a mostly random order, of which slightly less than half were legitimate, and slightly more than half were phishing websites that they copied exactly to three levels deep and put on a local server for purposes of the study.

    Participants were told to “Imagine that you receive an email message that asks you to click on one of the following links. Imagine that you decide to click on the link to see if it is a legitimate web site or a ‘spoof’ (a fraudulent copy of that website).” They were told they could interact with the website as users normally would and that any website might be legitimate or not. Since they were supposed to be paying attention, the study couldn’t test the third hypothesis of how phishers count on their victims behaving, but it could test the other two.

    More Website Promotion Articles
    More By Terri Wells


       · I thought the research was rather eye-opening. Thanks for reading. Feel free to...
       · Great article as always Terri.I'm wondering if you have thoughts about the...
       · Thanks Caroline! Well, I wouldn't extrapolate to little dancing bears on your...
     

    WEBSITE PROMOTION ARTICLES

    - How to Effectively Monetize Your WordPress B...
    - Blogging and SEO, a Beginner`s Guide
    - Formatting a Website with Personality Types ...
    - Copy Writing with Personality Types in Mind
    - Crafting a Website with Personality Types in...
    - Getting Included in Google News
    - Google AdWords and Yahoo Search Marketing Gu...
    - Checklists: A Blogger`s Second Best Friend
    - Top PPC Tips for Effective Marketing
    - Is Your Brand Killing Your Search Campaign?
    - Creating Your Domain Name
    - Using Images to Tell Your Story
    - Generate Traffic to Your Site by Posting in ...
    - Editorial Calendars: a Blogger`s Best Friend
    - Link Building Outside the Box





    © 2003-2009 by Developer Shed. All rights reserved. DS Cluster 3 Hosted by Hostway
    Stay green...Green IT