Phishing Trap: Hackers Attract Browser Users with a Green Lock



[ad_1]

                Phishing Trap: Hackers Attract Browser Users with a Green Lock

The green lock in the browser does not protect against phishing itself. (Image: Shutterstock)


| Note: The article contains commission links – what is it?

Many users rely on the green lock in the browser's address bar when browsing. However, every other phishing site should have the symbol.

The green lock icon in the browser's address bar is not an indicator for a secure page for the user. Although the closed padlock indicates that the data traffic from the browser to the server is encrypted via TLS and thus protected from any reading by third parties. However, even fraudsters rely on the symbol to lure unsuspecting users into the browser trap, as Heise reports.

49% of phishing sites have a green lock icon

According to Phishlabs, an anti-phishing company, 49% of phishing sites are currently equipped with eco-friendly lock icons, according to security researcher Brian Krebs. Only a year ago, it was only 25%. Many Internet users think that the symbol is a guarantee of security while surfing. According to a survey conducted by Phishlab last year, over 80% of users surveyed thought that a green lock site was legal or secure.

John LaCour, chief technology officer at Phishlabs, points out that the presence of SSL encryption does not say anything about the security of the site. Phishing fraudsters are increasingly registering their own domains and issuing security certificates. Meanwhile, browser vendors such as Google and Mozilla respond by saying that unencrypted pages are "unsafe" and by deconstructing the soothing lock icon.

This fake page with a green lock icon attracts users to the phishing trap with a supposed connection to Facebook. (Screen capture: Brian Krebs)

Of course, this does not provide better guidance to users to see if they could be fraudulent or not. Because the browser can not recognize. Therefore, the users themselves are encouraged to look closely, even if a symbol suggests security. However, browsers like Chrome warn of fraudulent websites or known malware.

Also interesting: how to prevent phishing with links in the new tab

[ad_2]
Source link