Get Smart about Business Spending
Safari 3.2 includes antiphishing tools
The new version of Safari, which was largely a security update and released last week, includes a new configuration option saying: "Warn when visiting a fraudulent website". It is configured to be on by default. So far, Apple is not talking about the enhancement, nor is there any documentation on the Safari site.
CNET tested the updated Safari 3.2 for Windows on various newly reported phish sites listed on DSLreports and PhishTank, and found none produced a warning. It could be that the phish sites being tested were not yet reported to the Google database or that the antiphishing update hadn't made it locally to our Safari browser for blocking.
According to Ryan Naraine at ZDNet, the alert displays standard language. It also includes two links, one to Google's explanation of a phishing site, the other to a Google Report an Error page.
Apple uses standard language when blocking a suspected phishing site.
(Credit: ZDNet)Apple is the last of the major browser vendors to offer antiphishing protection.
Microsoft uses its own antiphishing and anti-malware tool for Internet Explorer; Mozilla uses a combination of tools, including Google, for Firefox; Opera uses Haute Secure to provide bogus site warnings to end users; and Google uses its own antiphishing technology within its Chrome browser.
As CNET's resident security expert, Robert Vamosi has been interviewed on the BBC, CNN, MSNBC, and other outlets to share his knowledge about the latest online threats and to offer advice on personal and corporate security. Listen to his podcast at securitybites.cnet.com or e-mail Robert with your questions and comments. 
Just my two cents.
- by ickray November 19, 2008 7:20 AM PST
- Be very sure you have a backup of your system before installing this update. I don't even use Safari, and it trashed my MBP.
- Like this Reply to this comment
-
(4 Comments)