Tuesday, July 14, 2009

Gmail is now more secured [Super-trustworthy, Anti-phishing key]

We're always looking for new ways to protect Gmail inboxes from spam and phishing. Last year, we started taking extra steps to protect you from fake eBay and PayPal emails, requiring that any email claiming to come from one of eBay's or PayPal's domains actually comes from them. We do that by looking at the "From" header, and when it says "ebay.com" for example, it means it really did come from ebay.com. Anything else is rejected; it won't even appear in your spam folder because Gmail won't accept it.

Now, unless you are a regular reader of this blog with a photographic memory, you may not be aware of this extra protection. So, we thought we'd add a little something to remind you. Turn on "Authentication icon for verified senders" from the 
Labs tab under Settings, and you'll see a key icon next to verified emails that are super-trustworthy.

"Super-trustworthy" is a technical term I just invented that means: (1) the sender, usually a financial institution, is a target of phishers, (2) all of the sender's email is authenticated with DKIM, and (3) Gmail rejects any fake messages that claim to come from this sender, but actually don't. 

It's a bit of work for senders to make their email super-trustworthy, which is why this feature is limited to just eBay and PayPal right now. We hope to add more senders in the future, and when we do, you'll know because you'll see the super-trustworthy key icon magically appear by those senders too. Give it a whirl and 
let us know what you think.


Gmail Boost Phishing Protection
Bearly a week out of Beta and Gmail is already announcing new Lab features that enhance their current anti-phishing protection for users. After enabling this feature eBay and PayPal email messages (more financial services will likely follow) will display an icon of trust showing these messages are truly from the proper financial institutions. This is a visual tool that will make it that much easier for people to trust email messages being received from their financial institutions. Shown below are samples of what you can expect once you enable this Lab feature:

Notice the keys next to the display name showing these messages are being classified as "Super-trustworthy" in the Gmail interface. However do not confuse these key icons with the Yahoo Domain Key signed message icon as they do not necessarily mean the same thing (although the Gmail authentication tool checks for DKIM signatures as part of it's trust criteria).

Kudos's to the Gmail Security and abuse team for continuing to build these tools designed to help protect their users, however I would like to suggest this become an "enabled by default" feature for all users.

To enable the "
Authentication icon for verified senders" feature login to your Gmail or Google Apps account and click on the "Settings" tab (top right) and then Labs from the options - some people may have a a little green beaker they can click on which is a labs shortcut. Once your there scroll down tht page until you see the "Authentication icon for verified senders" and select enable - then click "Save Changes" button and your set.


Gmail Introduces Super-Trustworthy,Anti-Phishing Key For Paypal and eBay

Google GMail has recently out of beta, and now has a really nice feature to stop phishing activities that are commonly done fakeeBay and Paypal email.

After activating "Authentication icon for verified senders" feature under Gmail Labs in your GMail Account, the next time you receive a mail from either PayPal or eBay a key icon is displayed next to authenticated messages from certain senders that spammers attempt to fake.Google does this by checking the "From" header of the sender's email and is authenticated with DKIM,Anything else other than the verified sender won't even appear in your spam folder because Gmail won't accept it.

This currently works for mail from PayPal and eBay only and Google hopes to add more senders in the future.

Here's how you can activate the Feature :

To Activate "Authentication icon for verified senders",

Login to your Gmail, On the top click on the Gmail Labs Icon.

Next from the list of  experimental features select "Authentication Icon for Verified Senders"

Select "Enable" and and save the changes.

If all banks and financial institutions can join and come up with something like this,phishing attacks can be reduced by great number.

Source : www.emailkarma.net - www.techyard.netgmailblog.blogspot.com