I've just written the first version of "A Plan for Scams" - a summary of my views on the action required to tackle the phishing problem. I believe a co-ordinated effort from browser and mail client vendors, website owners, ISPs, domain registrars and certificate authorities is necessary, and I outline what steps each of them should take.
http://www.gerv.net/security/a-plan-for-scams/
Discussion: http://weblogs.mozillazine.org/gerv/archives/007569.html
Gerv
most frequent browser based risk I have heard about is the hijacking of popup windows.
maybe increasing the checks on uri loading into them will help reduce the risks.
Jaqui
-- ========================================
only plain text format email accepted.
smaller file size, no virus transfer no proprietary file formats.
========================================
smime.p7s
Description: S/MIME Cryptographic Signature
