|
|
Windows® Internet Explorer® 7
White Paper
Submitting a Phishing Dispute for Windows Internet Explorer 7
Abstract: This document provides the information and instructions necessary to dispute instances where websites or URLs are incorrectly designated as suspicious or blocked by the Microsoft Phishing Filter.
The information contained in this document represents the current view of Microsoft Corporation on the issues discussed as of the date of publication. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information presented after the date of publication.
This white paper is for informational purposes only. MICROSOFT MAKES NO WARRANTIES, EXPRESS OR IMPLIED, AS TO THE INFORMATION IN THIS DOCUMENT. This document is provided is for informational purposes only. The entire risk of the use or results in connection with the use of this document and the information contained herein remains with the user. MICROSOFT CORPORATION, MS AND THEIR AFFILIATES MAKE NO REPRESENTATIONS OR WARRANTIES, EXPRESS OR IMPLIED, IN THIS DOCUMENT.
Complying with all applicable copyright laws is the responsibility of the user. Without limiting the rights under copyright, no part of this document may be reproduced, stored in or introduced into a retrieval system, or transmitted in any form or by any means (electronic, mechanical, photocopying, recording, or otherwise), or for any purpose, without the express written permission of Microsoft Corporation.
Microsoft may have patents, patent applications, trademarks, copyrights, or other intellectual property rights covering subject matter in this document. Except as expressly provided in any written license agreement from Microsoft, the furnishing of this document does not give you any license to these patents, trademarks, copyrights, or other intellectual property.
Unless otherwise noted, the example companies, organizations, products, domain names, e-mail addresses, logos, people, places and events depicted herein are fictitious, and no association with any real company, organization, product, domain name, e-mail address, logo, person, place or event is intended or should be inferred.
©2006 Microsoft Corporation. All rights reserved.
Microsoft, Win32, Windows, Windows Server, Internet Explorer, Windows Media Player, and Windows NT are either registered trademarks or trademarks of Microsoft Corporation in the United States or other countries or regions.
The names of actual companies and products mentioned herein may be the trademarks of their respective owners.
Contents
Introduction 1
What is Phishing? 1
How the Microsoft Phishing Filter Works 1
Known Phishing Threats vs. Potential Phishing Threats 1
False URL Warnings and Dispute Submission 2
Recommended Guidelines to Prevent False URL Warnings 2
Correcting a False Warning from the Phishing Filter 2
Failure to Resolve a False Warning from the Phishing Filter 6
Additional Resources 6
Introduction
Phishing is one of the fastest growing threats on the Internet – with the number of Internet sites having increased over 400 percent in the last year. Microsoft is committed to protecting Internet users worldwide from becoming victims of phishing scams by promoting valuable consumer education, industry collaboration, legislation, enforcement, and technology innovation. The focus of Microsoft anti-phishing technologies are two-fold: one, to help prevent phishing e-mail messages from reaching customers; and two, to help prevent users from accidentally providing key personal data to a fraudulent website.
What is Phishing?
Phishing (pronounced "fishing") is a way to trick computer users into revealing personal or financial information through an e-mail message or a website. A common phishing scam starts with an e-mail message that looks like an official notice from a trusted or reputable source, such as a bank, a credit card company, or an online merchant. In the e-mail message, recipients are directed to a fraudulent website where they are asked to provide personal information, such as an account number or password.
How the Microsoft Phishing Filter Works
The Phishing Filter works by comparing the addresses of websites that a user attempts to visit to the list of reported and confirmed phishing sites, stored on the end user's computer. The Phishing Filter also analyzes sites for characteristics common to phishing sites, and, if the user allows it, sends the addresses of visited sites to Microsoft to be verified against a frequently updated list of confirmed phishing sites.
Known Phishing Threats vs. Potential Phishing Threats
The Phishing Filter works with Internet Explorer 7 to provide feedback on whether a website is a known or potential phishing threat.
• Blocked Website: Reputable sources have confirmed that the website is a known phishing website.
• Suspicious Website: Reputable sources have not yet confirmed that the website is fraudulent, but the site has characteristics that indicate it is a phishing site. The user must proceed with caution.
False URL Warnings and Dispute Submission
The following sections discuss the reasons for which the Phishing Filter may flag a URL, guidelines to prevent false URL warnings, and the process by which you can dispute a false warning.
Recommended Guidelines to Prevent False URL Warnings
Microsoft recommends the following best practices to help prevent Phishing Filter flagging.
• If you intend to ask users for personal information, you must use Secure Sockets Layer (SSL) certification.
• Verify that your website is secure from outside attacks by maintaining updated firewalls and installing all required security updates. Additionally, verify that your virus detection software is current and your server is virus-free.
• Verify that you are free from cross-site scripting attacks. For more information about this vulnerability, see the Cross-site scripting, Cross-site scripting questions and answers, and Prevent Cross-site Scripting articles.
• Verify the reliability of your external or third-party hosted content. Also verify that the content is secure and from a known or trusted source.
• Use a reputable domain name and avoid using an IP address. For example, URLs for sites hosted on the OEM domain must read, "OEM.com", not "207.46.19.30".
• Verify that you and your users are running the most recent version of Internet Explorer 7.
Correcting a False Warning from the Phishing Filter
If you believe your website is incorrectly labeled as suspicious or blocked, you can submit a dispute by using the web-based feedback tool built into the Phishing Filter.
Note The Suspicious website and Reported phishing website dialog boxes appear when the Phishing Filter flags a page as suspicious or if the site is on its known list of phishing sites from the Phishing Filter online reputation service.
To submit a dispute for a suspicious website
1. In the Suspicious website dialog box, click Report whether or not this is a phishing website.
The Phishing Filter Feedback screen appears.
2. Select I am the owner or representative of this website and want to report an incorrect warning on my website, and then click Submit.
The Phishing Filter Feedback: Site owner form screen appears.
3. Phishing escalation reviewers inspect the URL, assigning a grade that begins an automated process that corrects the error, confirms the original designation, or escalates the URL to a second tier for further review.
To submit a dispute for a blocked website
1. In the Reported phishing website dialog box, click Report that this is not a phishing website.
The Phishing Filter Feedback screen appears.
2. Select I am the owner or representative of this website and want to report an incorrect warning on my website, and then click Submit.
The Phishing Filter Feedback: Site owner form screen appears.
Note The Phishing Filter Feedback: Site owner form screen is the same for both suspicious and blocked websites.
3. Phishing escalation reviewers inspect the URL, assigning a grade that begins an automated process that corrects the error, confirms the original designation, or escalates the URL to a second tier for further review.
Failure to Resolve a False Warning from the Phishing Filter
The primary and most efficient process for disputing and resolving an incorrect designation is to use the dispute resolution tool built into the Phishing Filter. If the e-mail response that you receive from the Phishing Filter Support team does not resolve your issue, you must reply by e-mail to instigate a secondary investigation of the reported URL(s). If this process does not satisfactorily resolve your issue, contact your Microsoft account manager for further options.
Additional Resources
Refer to the following websites for more information about anti-phishing and the Microsoft Phishing Filter:
• Anti-Phishing Technologies home page
• Microsoft Phishing Filter Frequently Asked Questions (FAQ)
• Anti-Phishing white paper
• Windows Internet Explorer 7 download (includes the Phishing Filter) |
|
IP卡
狗仔卡
发表于 2007-2-5 11:20:24
收藏
支持
反对
提升卡
沉默卡
喧嚣卡
变色卡
千斤顶
显身卡