Book Review: Phishing Exposed 
Monday August 28, 2006
What happens if you take the weaknesses inherent in email security, combine it with flaws in Web security, and mix in a dose of social engineering to exploit users? You get a very effective tool for executing malware attacks. This is basically what phishing is all about. In Phishing Exposed: Uncover Secrets From The Dark Side, Lance James takes a dark, technical look at the weaknesses and techniques that make phishing work. The book explores the how and why of what makes phishing effective and examines the organized crime underground that leverages phishing for criminal purposes. Phishing Exposed: Uncover Secrets From The Dark Side is aimed more at developers or Web developers, and at security experts rather than at general users. For more details, see my Book Review: Phishing Exposed.
Comments
What (in your short answer opinion) is the main weakness in email security that allows phishing to flourish? Do you think products like email anti-theft software can deter it? Curious, because we have a product called Taceo that authenticates and prevents forwarding, etc. What’s your opinion on the effectiveness of something like this?