Fraudulent e-mails sent to both consumers and businesses claiming to be from reputable sources, most commonly known as phishing e-mails, are one of the most common weapons used by fraudsters to steal personal identifying information and commit identity fraud. Some install malicious software, others convince consumers to surrender their identities to identity thieves both at home and overseas. Worst of all, most phishing victims have no idea they are being duped.
PayPal, one of the most recognized companies in the secure online payment market, has now begun encouraging users to install a free browser plug-in, made available by Iconix, which verifies incoming e-mails as being genuine when originating from a cache of reputable business sources. PayPal, Apple, Ebay, and Capital One are among the 1500 sources the tool verifies using DNS-based e-mail id authentication protocols. Among the protocols used is DKIM, or DomainKeys Identified Mail, a collaborative e-mail authentication system made available by Yahoo! and Cisco.
Thanks to PC Magazine’s Security Watch blog for bringing this to our attention.