It appears that there could have been a rise in the number of phishing
mail recently. Phishing scam isn’t new, however, we assume that there
are many newbies who learn about it on the internet and started to
follow the same trick – in an attempt to get rich quick with whatever
they can do anonymously (so they thought).
Many companies have posted Warning messages on their login page to help protect their customers from phishing emails.
2checkout.com posted security warning on the news, right next to their login page. We find that this is a very good practice, instead of just a link for security information. Most of us just rushed in to login and do not read any security links. If there is any important message, post it, don’t link it.
In other main sites, the login page have links to educate Users about spoofing and new internet scams/threats. It is generally a good practice to continually educate Users. However, we recommend that the “security links” be more informative. For example, are there new type of threats that even an experienced user is not aware of?
Citibank’s security message:
Ebay’s Protection Tips:
Then there are some companies that go to even greater extent to educate and warn their Users of scam, phishing sites and email. One example is E-gold:
We are impressed with the amount of information provided. Let’s put it this way, there is no harm providing more information and getting customer to take their time to read security information. The price to pay for lack of, or truncated security messages, will be high – not just for the consumer, but the business as well. We recommend to have a localised, single point site for security messages that are applicable for all companies.