{"id":14037,"date":"2018-12-10T08:30:25","date_gmt":"2018-12-10T16:30:25","guid":{"rendered":"http:\/\/www.palada.net\/index.php\/2018\/12\/10\/news-7804\/"},"modified":"2018-12-10T08:30:25","modified_gmt":"2018-12-10T16:30:25","slug":"news-7804","status":"publish","type":"post","link":"http:\/\/www.palada.net\/index.php\/2018\/12\/10\/news-7804\/","title":{"rendered":"Innovative anti-phishing app comes to iPhones"},"content":{"rendered":"

<\/p>\n

Credit to Author: Jonny Evans| Date: Mon, 10 Dec 2018 08:01:00 -0800<\/strong><\/p>\n

We\u2019re always told never to click on a link we receive in an email in case doing so takes us to some dodgy phishing site where our account details are violated. But what if our email app warned us before we clicked malicious links?<\/p>\n

MetaCert<\/a> isn\u2019t fully available yet, but it does seem to be a promising solution that provides\u00a0email users in enterprise and consumer markets an additional line of defense against clicking on malicious links received in email messages.<\/p>\n

The solution emerged from the developer\u2019s earlier work building an API to help app developers add a layer of security to WebView<\/a>.<\/p>\n

It relies on two principal databases that are regularly updated:<\/p>\n

In future, the company will be implementing blockchain technology across its systems \u2014 that\u2019s an essential step that should enable users to verify whether websites and emails that are being alerted as threats actually are threats, rather than items accidentally added to the phishing warning lists.<\/p>\n

When you receive an email, the system will check the message against its databases.<\/p>\n

It will then flag emails inside your email app as follows:<\/p>\n

If you do accidentally click a recognizably malicious link, you will be taken to a warning page before you reach the bad website.<\/p>\n

There is a negative side to how the app works, which most users must be certain they understand. This is in order for this to work, the system must analyze your emails, which means messages must pass through MetaCert’s servers.<\/p>\n

This process means you must give the service permission to handle your messages, and (on iOS devices) you will be required to create an application-specific password that gives this software permission to access and analyze your messages.<\/p>\n

The company says it doesn\u2019t store your emails, but permitting third-party access in this way may be a red flag for some potential users, particularly in regulated industries.<\/p>\n

There are other solutions that provide anti-phishing protection, such as those from Avira (which costs a few dollars each month). MetaCert is currently available for free, but it is planned will become a paid service.<\/p>\n

Phishing attacks are becoming far more sophisticated, targeted and professional, with approximately 76 percent of enterprises admitting to experiencing them in the last year.<\/p>\n

You can\u2019t be completely reliant on services like these.<\/p>\n

Common sense matters; just because your security system tells you something is safe, it doesn\u2019t mean you should abandon your own scrutiny and common sense.<\/p>\n

A grey shield alert doesn\u2019t necessarily mean a link is safe; it means you should double check the link before you click.\u00a0<\/p>\n

The security environment continues to become more complex for both enterprise and consumer users.<\/p>\n

Traditional security protection systems such as virus checkers and firewalls are still mandatory, but they are far less effective against the complex attack scenarios prevalent in today’s digital economy.<\/p>\n

When it comes to enterprise security, network monitoring, location-based protection and cooperative sharing of security-related datasets are becoming key components of switched-on, 24\/7, situation-awareness security protection systems.\u00a0Within this landscape, MetaCert\u2019s system seems a useful adjunct to existing systems.<\/p>\n

I imagine we\u2019ll see this kind of alert-based security systems become components of future operating systems in the future, certainly within those from vendors that actually care about customer security, and privacy<\/a>, come to that.<\/p>\n

On iOS, this new solution works with most email services, including Thunderbird and Apple Mail, with Outlook and Gmail support in development. The company is running a public beta test<\/a>, so you can test this system for yourself.<\/p>\n

Please follow me on\u00a0Twitter<\/a>, and join me in the\u00a0AppleHolic\u2019s bar & grill<\/a>\u00a0and\u00a0Apple Discussions<\/a>\u00a0groups on MeWe.<\/em><\/p>\n

http:\/\/www.computerworld.com\/category\/security\/index.rss<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

<\/p>\n

Credit to Author: Jonny Evans| Date: Mon, 10 Dec 2018 08:01:00 -0800<\/strong><\/p>\n

\n
\n

We\u2019re always told never to click on a link we receive in an email in case doing so takes us to some dodgy phishing site where our account details are violated, but what if our email app warned us before we clicked malicious links?<\/p>\n

Can this app offer you protection?<\/strong><\/h2>\n

MetaCert<\/a> isn\u2019t fully available yet, but it does seem to be a promising solution that provides\u00a0email users in enterprise and consumer markets an additional line of defence against clicking on malicious links received in email messages.<\/p>\n

The solution emerged from the developer\u2019s earlier work building an API to help app developers add a layer of security to WebView<\/a>.<\/p>\n

To read this article in full, please click here<\/a><\/p>\n<\/section>\n<\/article>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[11062,10643],"tags":[10480,10554,714],"class_list":["post-14037","post","type-post","status-publish","format-standard","hentry","category-computerworld","category-independent","tag-ios","tag-mobile","tag-security"],"_links":{"self":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/14037","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=14037"}],"version-history":[{"count":0,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/14037\/revisions"}],"wp:attachment":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=14037"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=14037"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=14037"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}