The Cryptobic Non-Profit Security Alliance (SEAL) has introduced a new method for reporting suspected phishing websites. THE Verifiable phishing reporter (Authenticated Phishing Reporter) aims to be a “Hide” Disconnect Fraudstones, even if they contain CAPTCHA, bot protection or “concealment gall” (Scanners are harmless to users with malicious content) they are trying to get out of hand.
What’s going on with traditional meanings?
Automatic link scanners are often helpless: CAPTCHA and stick protection pick them up and fraudulent pages often are “Hide” Dangerous parts and are only shown to flesh blood users. It is also a problem that is difficult to prove authentically: the applicant actually saw the victim on the screen. Because TLS does not provide an official log file in the “Who sent” It can even be sneezed through conversation.
SEAL SOLUTION: TLS attestation, i.e. proven “What the user sees”
Seal has built a proprietary cryptographic solution into its system called “TLS certificate”. The essence of this is that the Whitehat researcher proves the same content that the victim would see on their screen. The submitted report is therefore not a simple screenshot or diary file, but a cryptographic proof that the external side has actually exhibited phishing elements. SEAL then checks the submission: on the one hand, the authenticity of signatures and whether the malicious patterns actually occur (such as a Seed request or a Wallet joining permit).
How do you use it?
Users can sign up for those pages from “Authenticated Evidence” (Atestation), which is suspected to be phishing. The system has already been in private beta and is now publicly available. The goal is twofold: on the one hand, a faster response (blacklisting, blocking, warnings) and on the other hand, stronger, cryptographic proof, which is more easily accepted by platforms, browsers and ministries.
Related content: What is Phaas, or phishing as a service?
Why is this important for the crypto ecosystem?
Fraudsters are using increasingly sophisticated methods: domain clone, dynamic content service, geophocalded redirection. Seal’s tools help to bridge the situation “I’ve seen it, but I can’t prove it” You can send credible, technically verified alerts to the major players in a shorter time frame. The organization is not the first to intervene: it previously launched the Seal-911 Telegram channel for rapid incident reporting and the Seal-II Cooperation Network that connects victims with investigators and platforms. The non-profit initiative is supported by A16Z Crypto, Ethereum Foundation and Paradigm.
#tool #received #combat #cryptophishing