NEWS FROM THE LAB - Friday, January 12, 2007

PayPal Key Fob Posted by Sean @ 13:03 GMT

Paypal will soon have for sale a one-time password token product. Designed to be carried with you on your key chain, it's based on a VeriSign device and will sell for five dollars.

We think this key fob is a good idea, especially considering that PayPal is such a prime target for phishers.

Here are some recently registered domain names for paypal phishing cases:

PayPal Phishing Sites

Of course, while a good idea, this key fob might not be the silver bullet that solves the phishing problem. Consider this eWeek article of a Phishing Kit that allows for easy man-in-the-middle attacks. The " Universal Man-in-the-Middle Phishing Kit" may well be the trend that phishing takes in 2007.