Free Trial

Safari Books Online is a digital library providing on-demand subscription access to thousands of learning resources.

  • Create BookmarkCreate Bookmark
  • Create Note or TagCreate Note or Tag
  • PrintPrint
Share this Page URL
Help

7. Infiltrating the Phishing Underground... > The Fresh Phish Is in the Tank

The Fresh Phish Is in the Tank

Live phishing sites are doorways into the phishing underground. This means that to enter the phishing ecosystem, we must first locate live phishing sites to study how they are designed.

Phishing sites have a Time to Live (a TTL, or the time from when they are launched to the time by which the Internet service providers discover them and shut them down) of just a few hours. This makes it difficult to manually attempt to locate live phishing sites, which is ironic because the thousands of victims who fall prey to them end up finding them with ease, albeit unintentionally.

The best way to locate a live and recently set up phishing site is to leverage community-based efforts such as PhishTank. The goal of the PhishTank project is to track upcoming URLs of live phishing sites for use in security applications such as antiphishing browser plug-ins. Figure 7-1 shows the PhishTank site illustrating the most recent phishing site URLs.


  

You are currently reading a PREVIEW of this book.

                                                                                                                    

Get instant access to over $1 million worth of books and videos.

  

Start a Free Trial


  
  • Safari Books Online
  • Create BookmarkCreate Bookmark
  • Create Note or TagCreate Note or Tag
  • PrintPrint