You may have heard that you should find the stone symbol at the top of a website before entering your password or credit card information online form. It's a good advice, but new data has been done; show that it is not enough to keep your sensitive information secure.
As this happens, wise researchers have gotten started and started sending them; lock, which isin most browsers, to their website too. That means that no accessories make sure that a website is safe.
That is based on data from PhishLabs who is doing cybersecurity, which was first reported by Brian Krebs's security writer, who is show that almost half of the fraud pages have a friend – which means that the site is secure – beside their websites' URLs. Scammers are aware that many of the internet users are responsible for a stone symbol for deciding whether they should rely on a website, according to the October report from the Group Anti-Phishing Work.
"Phishers who hold an uncertain security message" around the model, the authors of the report said.
The upshot is none there to protect you from the darkest side of the internet. You need to be safer than ever before to avoid scams and confirm for more than one sign that a website is valid.
That means going to & # 39; make sure that the URL of the website is correct and, where possible, texting the URL to your browser instead of & # 39; continue linking by email. Tools such as password directors and security software can also help: to stop you from an additional proxy scams website, they will warn you when a URL is not equivalent to the valid website or does not stop from opening the scan site to start Post-
"There is a very important sense," said Adam Kujawa, director of the search arm of the Malwarebytes cybersecurity company. "It is the user's responsibility to say, is this true legit?"
What the green does
The locks have been simpler intact. It's there to give you something that's special, and also very tight, and it's hard to go across with a simple picture.
It is said that the lock tells you that a website has been sent and posted; Get your browser information over a cryptte connection. That's all. You can say an encrypted link to a website because it starts with the https letters, not http. These daily websites use encryption type called TLS. The secure connection is made so that a web traffic person can not read while he is in a & # 39; travel through the broad, global infrastructure of the internet.
This is why a good connection is attached to encryption: it is to make sure that sensitive information is like password and credit card numbers; scratch so that it can only read the website that it is expected to read. That's really important for things like online cookies or webcam listing; your bank.
That's why it's still true that you should never enter your information unless there is a secure connection to a website.
But many people are not familiar with their lock; means something so special, John LaCour, PhishLabs's Chief Technology Officer. "We've done something to lock it 's safe & sure," he said.
Offenders can also use security features
Scammers who also want to access the green green clock sensitive information can also be found on their website, making it increasingly and more. When PhishLabs started their data collection early in 2015, fewer than fifty percent of phishing websites went to; lock behaviors. The number climbed rapidly, up to around 24 per cent in 2017 and now more than 49 per cent in the third quarter of 2018.
It makes sense that scammers will be & # 39; Using more and more locks, LaCour said. This is because it is easier and cheaper for web creators to use encrypted links, thanks to cybersecurity experts at Google, Electronic Frontier Foundation and other technical mercies.
Offenders can now easily obtain certificates that allow the lock to be able to; view up and encrypt them to proceed, and can do it without going to; show about who they are.
What's larger, key browsers like Chrome and Firefox have changed changes without completing TLSfor users, with a noticeable notice that the site is not secure. That gave more incentives to offenders to be & # 39; showing the locks on their websites, said LaCour, and avoiding her blind look.
"The lock does not tell you anything about the site's integrity," he said. "It's only telling you that your data is encrypted because it is transmitted over the internet."
It's not a bad news
The best thing that the scammers can use is encrypting on their fencing websites, Nick Sullivan, said one of Cloudflare's cryptography, a company that, among other things, help groups to crack their website.
Due to the fact that there is bad information; A person who has been arrested and readable can always be a bad idea, even though your problem is now that you have just sent your bank account information to a scammer in another country.
"There is nothing bad about fossil sites that encrypt," said Sullivan.
CNET Holidays Gift Guide: The place to find the best technological gifts for 2018.
Security: Keep up-to-date with the latest breakdown, the reasons, the arrangements and all cybersecurity issues that keep up at night.