Copyright © 2009 What The Hell? Security
What the hell? We have it all wrong again.
Listen up everybody. This isn’t about Facebook.
It’s like this. Consider the crime of stealing a credit card number in two scenarios, one offline and one online:
| Offline | Online | |
|---|---|---|
| Victim | Street Pedestrian | Online Pedestrian |
| Perpetrator | Fraudulent Hot Dog Vendor* | Fraudulent HTML Author |
| Scene | Street Corner | Any Website |
| Bait | Hot Dog | Link or Form |
| Innocent Act | Handing Over Card | Clicking |
| Criminal Act | e.g. Sell copies of charge slips to buddy |
e.g. Install keylogger and capture card number |
| Heartburn Type | Gastric, Financial (order can vary) |
Financial |
*Fraudulent vendor who sells legitimate hot dogs. Not to be confused with legitimate vendor who sells fraudulent hot dogs. That’s a whole different crime.
In the sequence of events, the only place to really solve this problem is between smelling the bait and performing the innocent act. Right? Right?
So allow me to announce my shiny new patent-pending Anti-Fraudulent Hot Dog Vendor Detector Method and Apparatus. The features of which I describe in my next entry.
Where the hell is Ron Popeil when you need him?
Filed under: Uncategorized | Tagged: fraud, hypertext, malware, phishing
