One interesting and fast-growing species of Internet fraud is phishing. Phishing attacks use email messages and web sites designed to look as if they come from a known and legitimate organization, in order to deceive users into disclosing personal, financial, or computer account information. The attacker can then use this information for criminal purposes, such as identity theft, larceny, or fraud. Users are tricked into disclosing their information either by providing it through a web form or by downloading and installing hostile software. A phishing attack succeeds when a user is tricked and made to fill in the details onthe online interaction screen looking similar to the original site. Because inferring a user's intentions can be difficult, building an automated system to protect users from phishing attacks is a challenging problem.
No comments:
Post a Comment