Breaking News

Transcend Launches Next-Gen microSD Express USD710S Logitech announces Signature Slim Solar+ K980 Keyboard G-SHOCK Launches the MRG-B2000BG-3A CORSAIR Introduces the FRAME 4500x with Wraparound Panoramic Glass for Showstopper PC Builds DJI Launches Osmo Nano

logo

  • Share Us
    • Facebook
    • Twitter
  • Home
  • Home
  • News
  • Reviews
  • Essays
  • Forum
  • Legacy
  • About
    • Submit News

    • Contact Us
    • Privacy

    • Promotion
    • Advertise

    • RSS Feed
    • Site Map

Search form

A Padlock and Https Don't Mean a Website is Safe

A Padlock and Https Don't Mean a Website is Safe

Enterprise & IT Nov 26,2018 0

Looking for the padlock and "https://" in an e-commerce website's URL is not enough in order to be assured that the specific website is safe.

A recent research from anti-phishing company PhishLabs indicates that 49 percent of all phishing sites in the third quarter of 2018 were bore the padlock security icon next to the phishing site domain name as displayed in a browser address bar.

In reality, the https:// part of the address (SSL) merely signifies the data being transmitted back and forth between your browser and the site is encrypted and can’t be read by third parties. The presence of the padlock does not mean the site is legitimate, nor is it any proof the site has been security-hardened against intrusion from hackers.

According to PhishLabs, phishers register their own domain names and create certificates for them.

In addition, some phishing site takes advantage of internationalized domain names (IDNs) to introduce visual confusion. While Chrome, Safari and recent versions of Microsoft’s Internet Explorer and Edge browsers all render IDNs in their clunky punycode state, Firefox will convert the code to the look-alike domain as displayed in the address bar. So if you’re a Firefox (or Tor) and would like Firefox to always render IDNs as their punycode equivalent when displayed in the browser address bar, type "about:config" without the quotes into a Firefox address bar. Then in the "search:" box type "punycode," and you should see one or two options there. The one you want is called "network.IDN_show_punycode." By default, it is set to "false"; double-clicking that entry should change that setting to "true."

The bottom line is that the presence or lack of SSL doesn’t tell you anything about a site’s legitimacy.

Tags: CybersecuritySecurityinternetphising
Previous Post
GPU Shipments Up in Q3’18 From Last Quarter Led by Intel
Next Post
ASRock X399 Phantom Gaming 6 Motherboard for AMD Ryzen Threadripper X Released

Related Posts

  • How to Navigate the Internet Safely 4 Essential Tips

  • HP Threat Research Shows Attackers Exploiting Zero‐Day Vulnerability Before Enterprises Can Patch

  • Samsung Develops New Security Chip For Mobile Devices

  • Samsung Says Your Galaxy S20’s Secure Processor Protects it Against Hardware Attacks

  • SK Telecom and Samsung Unveil the First QRNG-Powered 5G Smartphone

  • Facebook Works With Telecoms on 2Africa Subsea Cable for Future Internet Connectivity

  • Intel Confirms "Thunderspy" Risk in Thuerbolt Devices

  • Apple Says 'No Evidence' iPhone Mail Bug Used Against Consumers

Latest News

Transcend Launches Next-Gen microSD Express USD710S
Cameras

Transcend Launches Next-Gen microSD Express USD710S

Logitech announces Signature Slim Solar+ K980 Keyboard
PC components

Logitech announces Signature Slim Solar+ K980 Keyboard

G-SHOCK Launches the MRG-B2000BG-3A
Consumer Electronics

G-SHOCK Launches the MRG-B2000BG-3A

CORSAIR Introduces the FRAME 4500x with Wraparound Panoramic Glass for Showstopper PC Builds
Cooling Systems

CORSAIR Introduces the FRAME 4500x with Wraparound Panoramic Glass for Showstopper PC Builds

DJI Launches Osmo Nano
Consumer Electronics

DJI Launches Osmo Nano

Popular Reviews

be quiet! Dark Mount Keyboard

be quiet! Dark Mount Keyboard

Terramaster F8-SSD

Terramaster F8-SSD

be quiet! Light Mount Keyboard

be quiet! Light Mount Keyboard

be quiet! Light Base 600 LX

be quiet! Light Base 600 LX

be quiet! Pure Base 501

be quiet! Pure Base 501

Soundpeats Pop Clip

Soundpeats Pop Clip

Akaso 360 Action camera

Akaso 360 Action camera

Dragon Touch Digital Calendar

Dragon Touch Digital Calendar

Main menu

  • Home
  • News
  • Reviews
  • Essays
  • Forum
  • Legacy
  • About
    • Submit News

    • Contact Us
    • Privacy

    • Promotion
    • Advertise

    • RSS Feed
    • Site Map
  • About
  • Privacy
  • Contact Us
  • Promotional Opportunities @ CdrInfo.com
  • Advertise on out site
  • Submit your News to our site
  • RSS Feed