Symantec phishing for Norton Confidential testers

Stan Beer
Tuesday, 27 June 2006 16:26

Business IT - Security

The more unnerving threats of going online, such as identity theft, phishing, pharming and keystroke logging, have been with us for sometime. However, to date, the major security vendors have dropped the ball on criminal scams and focussed mainly on the plethora of virus, spyware and spam attacks that pervade the net. With Microsoft entering the ant-virus fray at cut prices, market leader Symantec has given an indication that it intends to widen its horizons and devise systems to trap scammers.

To this end, Symantec is currently running a beta testing program for a new product called Norton Confidential. The new product aims to safeguard users from online identity theft, protecting them from online scams like phishing, pharming and from keystroke loggers, which are designed to steal passwords, account numbers and other confidential information. According to Symantec, its aim is for Norton Confidential to help users bank, shop and otherwise share their confidential data online with confidence.

The Norton Confidential system focuses on the point of transaction. Prior to users logging in, making a purchase or otherwise submitting personal data, Norton Confidential scans both their PC and the web site, and attempts to protect them from known or suspicious phishing sites, crimeware and other threats designed to steal their information. Among the features claimed, the new security system blocks or warns users from visiting known or suspected phishing Web sites; protects them from keystroke loggers and programs designed to steal identities; confirms the authenticity of banking, shopping and other sites; and blocks password information from going to unauthorized sites.

"Today's increasingly sophisticated Internet threats target passwords, account numbers and other confidential information," said Jonathan Singer, analyst, Yankee Group.  "Consumers are looking for protection from identity theft and fraud so they can transact safely online."

David Hall, Senior Director, Consumer Products and Solutions, Asia Pacific and Japan for Symantec, said, "As the Internet landscape has become more crowded with phishing sites and threats designed to steal information for financial gain, consumer confidence in conducting business online has eroded.  To help restore confidence in doing business over the Internet, Symantec is introducing Norton Confidential-the first solution that offers consumers both fraud site and crimeware protection for their personal information at the point of greatest risk-during a transaction, login or other submission of confidential data to a Web site."

Naturally in order to build up its database of threats and defences, Symantec needs volunteers to act as guinea pigs in the field. Symantec is inviting visitors to a page on its website called transactsafely to sign up for the beta program which is to commence shortly, according to the company.

A big issue for Symantec and other security vendors is that Microsoft intends to offer similar features as part of its upcoming Windows Vista operating system. In order to get users to pay for its product offering, Symantec is going to have to convince them that it offers something that Microsoft doesn't. Of course, Symantec could try an appeal to anti-trust authorities. However, it's a bit of a stretch to expect anyone to try to force Microsoft to make its operating system less secure for users.