PayPal Most Phished, Facebook Most Blocked

Orome1 writes "OpenDNS released statistics about which websites were commonly blocked — and which websites users were frequently given access to — in 2010. The report additionally details the companies online scammers targeted in 2010, as well as where the majority of phishing websites were hosted. Facebook is both one of the most blocked and the most allowed websites, reflecting the push/pull of allowing social sites in schools and the workplace. On the other hand, 45 percent of all phishing attempts made in 2010 were targeting PayPal."

Obscurity FTW

[Locke2005]

My strategy of never having either a PayPal or Facebook account appears to have paid off!

Re:Obscurity FTW

[MrEricSir]

Congratulations, by not doing popular things, you're a better person than everyone else!

Re:

[eepok]

Not better... but safer.

Re:

[FooBarWidget]

By locking my computer in a safe and throwing it into the ocean, it is a more secure computer than everybody else's.

Re:

[oPless]

I wouldn't worry, it's super secure - there's nothing on the hard disk!

Re:

[Suki I]

I do enjoy my Facebook account. Being picky about my 4,000+ friends list really helps.

Never got into the PayPal.

Re:

[Cro Magnon]

You don't need a PayPal account to get phished. Awhile back, I got an email informing me of a problem with my account and they would clear it up if I entered my acct details. I was all set to do that when I realized - I don't HAVE a PP account!

Re:Obscurity FTW

[CastrTroy]

This is the problem with PayPal. They actually do send real emails to customers about their account. Because this is the only way they can contact their customers. Everybody knows (or should know) that your bank will never send you an email and ask you to verify account information. And and disregard any email that is apparently coming from your bank. However, many people will trust an email that appears to be from PayPal, because paypal regularly corresponds with customers via email. Paypal is basically a bank that only works via email. Which makes it a prime target for phishers.

Re:

[Man Eating Duck]

This is the problem with PayPal. They actually do send real emails to customers about their account. Because this is the only way they can contact their customers.

I got an email from them about my account being suspended because of "hacking attempts". I've gotten several, but this one seemed legit because they asked me to call them by looking up their customer service number on their site (no link). I did, and they requested that I faxed them some proof of residence at my address. I faxed them various utility bills, and eventually my account was activated again.

I don't remember the exact course of events, but the line of questions I got made me pretty confident that

Paypal - Were the money is

[bfmorgan]

Paraphrasing Dilinger, "Paypal is were the money is".

Re:

[hedwards]

True, but at least PayPal is stealing it rather than criminals.

Re:

[Nadaka]

Its not stealing... Its merely locked in arbitration indefinitely while they collect interest on it.

Re:

[Anonymous Coward]

Dammit, that money is supposed to be are money! Not Paypal's!

Good riddance

[h00manist]

What a bunch of nonsense. To block or allow a sold-out corrupt money site, or a bunch of teenage-modeled showoffs.

Skewed data?

[Darkness404]

Is it just me or is this data rather skewed because it comes from openDNS? In general, the people who run and configure OpenDNS are completely different in what they block/allow when compared to something like DansGuardian, SonicWall, NortonFamily and other programs meant to target the average user. So to claim that Facebook is more blocked than porn sites most likely is not true, its just that those people are using things that aren't openDNS.

Re:

[eggsurplus]

You can only report on the data that you have at hand. However, keep that in mind when trying to interpret the results.

Re:

[LauraOppen]

This is just data for the people who choose to whitelist/blacklist. So of the people who DO blacklist, Facebook is #1 The report also includes info about the top categories blocked by network admins, which unsurprisingly, are related to porn. Full disclosure; I work at OpenDNS :) Hope that helps clarify the data.

Re:

[gmuslera]

OpenDNS=free, only you need to use their DNSs and inform your IP

The alternatives imply buying software, dedicate a pc to it, or configure proxies/firewalls

I'd bett that more use it for places like homes, schools or small business, and that could be more in absolute numbers than the alternative

What $DAYJOB Firewall does to these sites

[billstewart]

• livejournal.com - blocked: obsessive time-sucker.
• icanhascheeseburger.com - blocked: You can not has cheeseburger. Here is bukkit.
• facebook.com - blocked: Medical plan does not cover ADD treatment. $MANAGER has just become Godfather. $CAFETERIA has canoli today. $HR-Department has given you a shrubbery!

OpenDNS

[uigrad_2000]

I'm not sure how any of this is news. It seems to just be an ad for the OpenDNS service.

The company provides a ton of different services dealing with filtering traffic based on the address. They have one service that blocks commonly misspelled DNS names. They also allow a company to create black or white lists for traffic, for any reason that they want.

The two statistics they list are not related. Obviously phishing for banking information is more successful when you are register a domain name similar to a site whose main purpose is allowing transactions with money (paypal). White and Black lists are bound to be filled with well known websites, of which facebook is definitely in the top ten. The article says that Facebook is the second-most whitelisted site, and doesn't give the first, but I'll bet it's Google.

Easy targets

[eiiiI'monslashdot]

Obviously paypal is the most phished. Only dumb people would risk paypal. Dumb people are an easy target!

Another reason to block Facebook

[dbIII]

I've had to upgrade a few work computers simply because their web browsers were slow to render the truly crappy interface of Facebook while there was other stuff running.
Then people spending too much time looking at Facebook instead of working led to management mandating blanket blocks of everything on the web during peak work times resulting in more time wasting because users had to wait before they can look up work related information.
Technological solutions to minor social problems really suck. The true answer is for management to tell people not to waste time playing on the net instead of cutting the cord.

Re:

[El_Oscuro]

Put in /etc/hosts:

127.0.0.1 www.facebook.com

Facebook is now blocked. Problem solved.

Oh, and to clean up a lot of other crappy websites, download the latest /etc/hosts file from mvps.org. [mvps.org] Just make sure your users don't have admin rights. Otherwise you are completely pwnned no matter what you do.

Re:

[account_deleted]

Comment removed based on user account deletion

Re:

[account_deleted]

Comment removed based on user account deletion

Re:

[dbIII]

Well yes but then people complained that they were being picked on if only Facebook was blocked because it was unfair they couldn't run their virtual farm but I could order computer parts for work purposes online, the secretary could order stationary etc etc. Instead of management telling them to piss off and play Facebook games at home they decided to block everything.
As you should have read above - a technical solution to a social problem is not going to work so I was not looking for one of the many blat

Re:

[memojuez]

Facebook, MySpace are blocked by law [fcc.gov] in all schools and public libraries that receive Federal Technology Dollars called E-Rate. The Children's Internet Protection Act [wikipedia.org] was created as back door censorship by making it an additional require for poorer districts to receive needed funds to stay technologically relevant. Earlier attempts [wikipedia.org] to censor the web [wikipedia.org] at these locations were overturned by the Supreme Court on First Amendment Grounds.

It has created a cat and mouse game as kids find new proxies to circumven

Re:

[yuhong]

Yea, I know. Luckily I don't visit Facebook much at all, let alone at school. I care more about Reddit being blocked at my school. FYI my school uses Lightspeed as the vendor.

One word comes to mind...

[Jedimstr397]

Whoooaa.