A new extension called “password alert” warns the internet user when entering a gmail password on a phishing webpage.
To fight against phishing attempts, Google has released an extension for its Chrome browser called “password alert”
People often think that hacking is the prerogative of computer nerds who implement highly technical computer codes to enter secure servers. But the reality is much simpler.
The most effective way to know a password is still… to ask for it
This is called phishing. Who has never received an e-mail from someone pretending to be your bank, your tax, or your Internet Service Provider, asking you to send your password?
And it works! Recent hacking of Sony website is a very good example of spear phishing. Spear phishing is an alternative of the usual phishing attempt with personalized emails targeting some specific people inside the company.
To fight against this scourge, Google has just created an extension available only for Chrome. Chrome being the homemade browser of the famous search engine.
During the installation of “password alert”, a “scrambled version of your password is stored on your computer”. This is what is stated in the presentation of the extension. Then “password alert” compares it with what you may type during your stay on the internet.
In other words, if you enter your gmail password on a web page that is not authenticated as a login page to the Google services, the extension “password alert” will show on your screen a message, similar to the image of the article. The extension then prompts you to change your gmail password before it can be used fraudulently.
Although the extension “password alert” appears, at least theoretically, a new step against phishing attempts, it presents some limitations. It only works on Chrome and it only works with your gmail password, it will not work if you use another email service.
The future separation of Paypal and eBay will cause an increase in phishing attempts
In September 2014, eBay announced the intention of separating from his Paypal subsidiary acquired in 2002. This separation, which is expected in the second half of 2015, is getting closer and the details of this divorce are being revealed.
If you are a PayPal user, you may have already received an email entitled “Our Legal Agreements are changing”. Inside you can read that “Soon, PayPal and eBay will no longer be part of the same group of companies and will operate as unrelated organization”. It implies that “Use agreement, Acceptable Use Policy and Private Policy” will be updated in order to “continue providing the same great services you are used to.”
The email then prompts the user to click on a link for “details of these changes”. It redirects to the paypal.com site and gives access to Policy update.
The image above is the image of the email received from Paypal to indicate changes to come after his future separation from eBay.
Scammers are always on the lookout for opportunities. You will probably also receive e-mails being phishing attempts usurping Paypal identity, or even that of eBay. Scammers will take advantage of the official communication to send phishing attempts. They will try to rip a few distracted or misinformed internet users about this practice.
Remember the three techniques to distinguish a genuine email from Paypal:
The email sender address must be paypal.com or paypal.co.uk (or paypal.[your country code])
The email must include your first name and your last name (and not “Dear Customer” or “Dear user”)
The link in the email should redirect to a paypal.com address (Pay attention to the fact that “paypal” must be just before the .com, for example “paypal.xyz.com “is NOT an official paypal site)
1sc.org has been created to introduce you to the various scams that exist on the internet. 1sc stands for “Number 1 Scammer Cases”. 1sc.org is a new website that will help you to avoid scams on the web.
These scams go from the modernization of old scams that exist before the internet to scams created with the world wide web and its democratization. Always be suspicious when you are on the net!
Besides the home page, the website consists of seven categories
These categories are detailed below. You can access them by clicking the link at the beginning of each line or enter them via the dropdown menu on the side.
Phishing: Definition of phishing with general and detailed descriptions. What to do in case of suspicious movement on your bank account?
Scam by e-mails: Principle of scam attempts by e-mails with links to examples of inheritance scam, lottery scam and more
Scams on the web: Types of scams you may encounter on the internet : Romance scam, fake e-commerce websites, fake loan proposal, …
Internet scam – What to do? : Description of actions and remedies for victims of scams on the internet. Useful section for anyone looking for help
Gallery : A list of most common persons scammers pretend to be in order to convince you to send them money
Your stories: Send your testimony that describes the scam you have suffered and share your story online. This way, you will prevent others from suffering the same misadventure.
We hope 1sc.org will give you satisfaction. If you have any questions, comments, or want more information, feel free to leave comments in the section provided for this purpose at the bottom of the various pages and different posts.