Symantec developing antiphishing security software

Symantec developing antiphishing security software

Symantec will release in September a beta of a security software product that hardens a computer's defenses against e-commerce and banking fraud.

Symantec has announced it will release, in September, a beta version of a security software product that hardens a computer's defenses against e-commerce and banking fraud.

The software, Norton Confidential, would detect when a website or malicious program was trying to swipe a user name or password, a rising form of Internet crime called phishing, Symantec said.

A phishing attack usually involves a link sent by email or instant message that leads to a Web page constructed to appear legitimate. Instead, the Web page often asks for sensitive data such as bank account or Social Security numbers, information that can be used for an identity theft scheme or other online fraud.

The software is one of many products under development by security and software vendors intended to catch phishing attempts. The Anti-Phishing Working Group, a consortium of companies and researchers, recorded a record 20,109 unique phishing attacks in May.

Norton Confidential scans websites visited by a user for fraudulent or suspicious activity. The software compares a website against lists of fraudulent ones.

Norton Confidential will also generate warnings for pages that function like known fraudulent sites. Most phishing sites are taken down by ISPs within a few hours or days, but a window of attack remains in the interim.

The software can also scan computers for Trojan horse programs, applications that purport to be harmless but have malicious functions, such as recording keystrokes or downloading other bad programs.

Norton Confidential would verify sites' authenticity using Secure Sockets Layer (SSL) encryption technology, Symantec said.

Hackers have found a variety of ways to fake a site with SSL, by methods such as manipulating graphics or exploiting Web browser flaws.

The software was capable of encrypting stored passwords and prompting when credentials were sent to unknown or unauthorised sites, Symantec said.

It will offer a version in October for Apple's Mac operating system that is similar to the one for Microsoft's Windows XP OS.

Pricing will be released later.

Follow Us

Join the newsletter!


Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.


Show Comments