No Phishing
|

Linked – Half of all Phishing Sites Now Have the Padlock

ByMike McBride Reading Time: 1 minute

I highly suggest checking to make sure this advice is not part of the training you’re giving your users. It really is outdated.

“Maybe you were once advised to “look for the padlock” as a means of telling legitimate e-commerce sites from phishing or malware traps. Unfortunately, this has never been more useless advice. New research indicates that half of all phishing scams are now hosted on Web sites whose Internet address includes the padlock and begins with “https://”.”

As further explanation Brian also describes what the “padlock” has always represented, which is not that the site is “safe” per se.

In reality, the https:// part of the address (also called “Secure Sockets Layer” or SSL) merely signifies the data being transmitted back and forth between your browser and the site is encrypted and can’t be read by third parties. The presence of the padlock does not mean the site is legitimate, nor is it any proof the site has been security-hardened against intrusion from hackers.

So yes, having the padlock is better than being on a site without it, but really what is needed is to check, and double-check, the actual URL, or even better, before you type in any credentials, go open a new tab and type it yourself.

https://krebsonsecurity.com/2018/11/half-of-all-phishing-sites-now-have-the-padlock/

Similar Posts

  • The dirty details

    ByMike McBride Reading Time: 4 minutes

    While still trying to keep a bit of mystery about where I currently work, and where I’m going to be working, there are a few things that I find very interesting about my upcoming job-switch that I want to share and discuss. Mostly, I’m interested in how much of my experience can be extrapolated out…

  • |

    Linked – Where did social media go wrong?

    ByMike McBride Reading Time: 2 minutes

    This is an interesting observation, in fact, I was just considering something similar the other day, about how we went from relishing the freedom of expression that blogging provided anyone and everyone, to where we are today, trying to shut people up on social media. For most of my life, the internet, particularly its social…

  • What I’m Sharing (weekly)

    ByMike McBride Reading Time: 1 minute

    Top 3 Reasons People Get Surprised By Their eDiscovery Bills – And How I Manage Expectations To Avoid It The GDPR Is A Wide Open Vulnerability For Identity Fraud And Scams Can You Really Protect Against Ransomware? Employees still scared to open up about mental health, says survey FAA bans MacBook Pros with defective batteries…

  • |

    Worth Reading – “Pizza Parties Don’t Fix Burnout”: The State of Librarian Mental Health

    ByMike McBride Reading Time: 2 minutes

    It’s exhausting to go to work every day for people who refuse to stand behind you as a human being and treat you like an expense they would do anything to be rid of. 

    Sadly, that is the state of the workplace for many people. It’s not just at the library, and it won’t be fixed by pizza, yoga, or any other lunchtime activity. 

  • Why Training Matters for Retention

    ByMike McBride Reading Time: 3 minutes

    This brings me to that final point. Having a learning culture requires a plan for each employee and for different types of jobs. It requires coordination between the official training department, managers, HR, and the subject matter experts throughout the organization. It may look a bit messy. It may include some mix of internal training, external resources, job shadowing, self-study, and group learning. I’d argue that a true culture that promotes and encourages learning would leave open all of those possibilities. I’d also argue that your training staff isn’t just there to teach classes but to provide and coordinate all of those options. They are there to “provide opportunities to learn and grow”, whatever those look like for all of your employees who wish to do so. They are key to retention but they cannot do it alone. The culture must reward and encourage learning and growth in meaningful ways or all the training staff in the world won’t make a difference. 

  • |

    Excel Tutorials

    ByMike McBride Reading Time: 1 minute

    In Litigation Support, there are times when you are forced to manipulate data. Sometimes, a lot of data. While we all wish eDiscovery would just come in clean, easy to use, load files with metadata displayed properly all the time, reality is a different story. So, occasionally, we have to resort to dealing with lots…

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

To respond on your own website, enter the URL of your response which should contain a link to this post's permalink URL. Your response will then appear (possibly after moderation) on this page. Want to update or remove your response? Update or delete your post and re-enter your post's URL again. (Find out more about Webmentions.)