Fish named Phil helps foil phishers
Last Updated: Wednesday, September 26, 2007 | 12:31 PM ET
CBC News
Related
External Links
- Anti-Phishing Phil
- PAPER: The design and evolution of a game that teaches people not to fall for phish
(Note: CBC does not endorse and is not responsible for the content of external sites - links will open in new window)
Playing an online game beats computer tutorials or written materials in arming people against phishing attacks, Carnegie Mellon University computer scientists have determined.
The scientists tested an online game they developed, Anti-Phishing Phil, against a tutorial they created based on the game and existing online materials.
After 15-minute tests, "We found that participants who played the game were better able to identify fraudulent websites, compared to the participants in other conditions," the researchers reported in a paper presented at an online security symposium in July.
"We designed the game to teach people how to use web addresses, or URLs, to identify phishing websites," said Steve Sheng, a Carnegie PhD student and lead developer of the game, a project of the university's Usable Privacy and Security Laboratory.
Other computer scams, like viruses or spyware, are based on a weakness in the computer's hardware or software. But phishing attacks "take advantage of the way people use their computers and their often-limited knowledge of the way computers work," said Lorrie Cranor, Carnegie professor and director of the lab.
The game stars a little fish named Phil who helps users identify phishing URLs, look for cues in web browsers and use search engines to find legitimate sites.
The lab's user studies concluded that education can protect people from falling for phishing attacks, the scientists said.
But "it is hard to get users to read security tutorials, and many of the available online training materials make users aware of the phishing threat but do not provide them with enough information to protect themselves."
The researchers want to expand their tests by asking visitors to go to their website and play the game.
Phishing is a computer-based scam that tries to trick people into revealing personal, bank or credit-card information. Phishing often involves e-mails that appear legitimate, such as a request from a bank to confirm account information by sending details of the account.
If consumers do, the scammers will try to use the information to break into the consumer's account.
Share Tools
Top News Headlines
- Everest victim's family asks for government help
- The family of a Toronto woman who died in pursuit of her lifelong dream to climb Mount Everest is asking the Canadian government for help in bringing her body back to Canada. more »
- Employment Insurance review boards to be scrapped
- The federal government is scrapping two review boards used by people appealing decisions made about their employment insurance. more »
- Teens share bullying tales in confession booth
- Raw stories about bullying emerged when a video booth was set up inside a Quebec high school. more »
- Canada ending 'Buffalo shuffle' for visas, closing consulate
- The federal government is shutting the Canadian consulate in Buffalo less than two years after costly renovations, while dropping a requirement for visas to be renewed outside the country, CBC News has learned. more »
Latest Technology & Science News Headlines
- SpaceX capsule docked at International Space Station
- The privately bankrolled unmanned SpaceX Dragon capsule has been securely bolted to the Harmony module of the International Space Station. . more »
- Bonavista, N.L., 'coyote' was really wolf, tests confirm
- Wolves have not been seen in Newfoundland since around 1930 and were believed to have been hunted to extinction on the island, but genetic tests have confirmed that an 82-pound animal shot on the Bonavista Peninsula in March was, in fact, a wolf. more »
- Once-rare argus butterfly thriving thanks to climate change
- Global warming is threatening the existence of many species, such as the giant polar bear, but in the case of Britain's brown argus butterfly, it took a species in trouble and made it thrive. more »
- How curry spice helps the immune system kill bacteria
- A spice used in curry dishes helps to prevent infection and now scientists think they've got a lead on how. more »
Bob McDonald's Blog
Government to shut down unique fresh water research area May. 25, 2012 12:31 PM The Experimental Lakes Area research facility in Northern Ontario is being closed down after 44 years of providing invaluable data to scientists in Canada and internationally, a decision that has stunned researchers and environmental groups.
Quirks & Quarks
- May 26: Before the Lights Go Out May. 24, 2012 10:14 AM A new book, "Before the Lights Go Out: Conquering the Energy Crisis Before It Conquers Us", suggests that the unpredictable, unplanned, ad-hoc way our energy use developed in the past will shape our energy future.
Latest Features
- Victim's husband to be charged in Aylmer triple stabbing
- Reclaiming the dead on Mt. Everest
- Everest victim's family asks for government help
- Employment Insurance review boards to be scrapped
- Teens share bullying tales in confession booth
- Conservatives move again to have robocalls suits tossed
- Workers' EI history to affect claim under new rules
- Canada ending 'Buffalo shuffle' for visas, closing consulate
- SpaceX capsule docked at International Space Station
