Thursday, November 13, 2008

Dressing up as a Phish

Sasha Romanosky points me to a story about a security analyst dressing up as a phish to educate students. This reminds me of that time Randy Pausch dressed up as some character from Alice in Wonderland and gave away Alice CDs. I have to admit, this is definitely going to be memorable for the students.


Tech-Security Official at U. of Virginia Wears Fish Costume to Raise Awareness of 'Phishing'

When Karen McDowell dressed up in a purple fish costume and walked around the University of Virginia’s campus last month, she got plenty of attention for her cause, even though she had to explain the meaning of her outfit. Ms. McDowell is a security analyst for the university, and her goal was to raise awareness about e-mail phishing schemes, in which con artists send e-mail messages hoping to lure people into giving out their passwords or other personal information.

Tuesday, November 11, 2008

When Phishing Education Goes Bad

A sad, funny, and frustrating story about phishing education. Don't know if this is true or not, but I can see it happening.
http://thedailywtf.com/Articles/Go-Phish.aspx


Auburn University's CIO sends out a warning to students, faculty, and staff about phishing, and includes an example of phishing in his email. A few days later, he sends out another email, excerpt below:

"In my previous alert, I included the text of a phishing email as an example. Some students misunderstood that I was asking for user name and password, and replied with that information. Please be aware that you shouldn’t provide this information to anyone."



Wednesday, November 05, 2008

Obama and McCain Computers Hacked

This Newsweek article talking about Obama and McCain computers being hacked is light on details (probably because of an ongoing investigation), but is disconcerting in terms of its implications.


At the Obama headquarters in midsummer, technology experts detected what they initially thought was a computer virus—a case of "phishing," a form of hacking often employed to steal passwords or credit-card numbers. But by the next day, both the FBI and the Secret Service came to the campaign with an ominous warning: "You have a problem way bigger than what you understand," an agent told Obama's team. "You have been compromised, and a serious amount of files have been loaded off your system."