In order to provide its customers with real-time alerts about their SSL Certificates, which tell them when their websites are compromised and used to support phishing attacks, certification authority GlobalSign has partnered with Internet services provider Netcraft.
The GlobalSign Netcraft Phishing Alert service will first tell GlobalSign when one of its customers’ websites is being used to support phishing attacks, and the company will then immediately notify and advise the customers on remediation steps so they can quickly fix the problem and stop the attack. And, if GlobalSign discovers that a site has specifically created for malicious intent, it will revoke its certificate.
This service, the first of its kind, means customers can maximize their investment in GlobalSign with additional security against these highly prevalent, not to mention persistent, criminal attacks. For a partner, Netcraft was an ideal selection, as it is continually produces an updated phishing feed (one that is currently used by all of the major Web browsers), and it has blocked more than 5 million phishing attacks to date.
Websites are required to have an SSL Certificate to activate the SSL/TLS technology built into a browser or server. Once it’s activated, it will provide an encrypted link between the browser and server to secure transactions or data submission. As SSL trust signals are meant to inspire confidence in users, it can be especially disastrous for consumers and website owners if a site is compromised and used to deploy phishing pages. Luckily for GlobalSign customers, the GlobalSign Netcraft Phishing Alert will significantly reduce their risk of becoming victims of such an attack.