Google Combats Phishing with New Security Tool

Tech giant Google is going toe-to-toe with phishers with its new Chrome browser extension. With all the high-profile data breaches, this could add another layer of security for end-users who are falling for social engineering tactics.

Social engineering strategies trick users into clicking on links that contain malicious software downloads or otherwise send them to fake sites that entice them to enter personal information in exchange for some type of reward or access. Fake banking sites are prime examples.

GoogleEUs new tool is called Password Alert. HereEUs how it works: If you enter your Gmail or Google for Work password into anywhere other than accounts.google.com, youEUll receive an alert, so you can change your password if needed.

Google explains that Password Alert also tries to detect fake Google sign-in pages to alert you before youEUve typed in your password by checking the HTML of every page you visit to see if itEUs impersonating a Google sign-in page.

The Phishing Realities

Google is on to something with its Password Alert. According to the McAfee Labs, phishing continues to be an effective tactic for infiltrating enterprise networks. A September 2014 study revealed 80 percent of participants failed to detect at least one of seven phishing e-mails.

EUOne of the great challenges we face today is upgrading the InternetEUs core technologies to better suit the volume and sensitivity of traffic it now bears,EU said Vincent Weafer, senior vice president for McAfee Labs. EUEvery aspect of the trust chain has been broken in the last few years -- from passwords to OpenSSL public key encryption and most recently USB security. The infrastructure that we so heavily rely on depends on technology that hasnEUt kept pace with change and no longer meets todayEUs demands.EU

SymantecEUs 2015 Internet Security Threat Report pointed to an 8 percent increase in highly-targeted spearphishing attacks in...

Comments are closed.