[143076] in cryptography@c2.net mail archive
Re: What EV certs are good for
daemon@ATHENA.MIT.EDU (Ben Laurie)
Tue Jan 27 12:45:20 2009
In-Reply-To: <A90C7AFF-840E-4DB5-A6D0-ADA9C6C9894A@lrw.com>
Date: Tue, 27 Jan 2009 15:13:02 +1100
From: Ben Laurie <benl@google.com>
To: Jerry Leichter <leichter@lrw.com>
Cc: Cryptography <cryptography@metzdowd.com>
On Sun, Jan 25, 2009 at 11:04 PM, Jerry Leichter <leichter@lrw.com> wrote:
> I just received a phishing email, allegedly from HSBC:
>
> Dear HSBC Member,
>
> Due to the high number of fraud attempts and phishing scams, it has been
> decided to
> implement EV SSL Certification on this Internet Banking website.
>
> The use of EV SSL certification works with high security Web browsers to
> clearly
> identify whether the site belongs to the company or is another site
> imitating that
> company's site....
>
> (I hope I haven't quoted enough to trigger someone's spam detectors!)
> Needless to say, the message goes on to suggest clicking on a link to
> update your account.
So did the link have a EV cert?
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
