Tuesday, May 25, 2010

Phishing and New Mozilla Account Manager add-on

Phishing is all about deception. Check out Aza's blog post which talks about one such interesting way. Finally the post boils down to publicize the new Mozilla's Account manager add-on. http://www.azarask.in/blog/post/a-new-type-of-phishing-attack/ This add-on sounds like another form of open-ID implementation, with no cloud footprint and with its own spec. Still in the beta phases this feature might get included in the firefox browser soon. With this user security is as good as the security of the local data (to be more specific the Mozilla's security manager). Integration of this with One time password is a good to have. More Reading http://www.mozilla.com/en-US/firefox/accountmanager/ https://wiki.mozilla.org/Labs/Weave/Identity/Account_Manager