New phishing exploit emphasizes importance of high security browsers
A new exploit has been discovered that makes it possible for a phisher to fake a URL in the address bar of any Internet Explorer 6 browser, including the latest and most secure versions. I expect Microsoft will fix this exploit pretty quickly. However, this exploit highlights the value of increasing the phishing security in browsers. Firefox took the first important steps in this effort at the end of 2004. Browsers like Netscape and Opera followed suit, and now we're anticipating Microsoft's addition to the high-security browser market with Internet Explorer 7. Phishers will continue to discover new ways to trick people, of course, and we as an industry must maintain our laser focus on preventing those tricks wherever possible. VeriSign's doing its part by taking a leadership role in High Assurance SSL Certificates, which will be a great stride forward in this effort.