|
|
|
|
||||
|
||||
The Threat of Political PhishingOliver Friedrichsaffiliation not provided to SSRN Markus Jakobssonaffiliation not provided to SSRN Christopher SoghoianYale University - Yale Information Society Project July 1, 2008 The International Symposium on Human Aspects of Information Security & Assurance, 2008 Abstract: Internet based donations to political candidates are now a vital part of any successful campaign. Tens of millions of dollars are raised online each year, primarily in sub one hundred dollar amounts from individuals around the country. Politicians have exempted their own campaign donation solicitation emails from federal anti-spam legislation, and their campaigns encourage risky behavior by teaching users that it is OK to click the 'donate' button on an unsolicited email that arrives from a candidate. While not yet a major problem, fraudulent websites that masquerade as genuine campaign sites aiming to defraud donors are a significant threat on the not-so-distant horizon. These political phishing sites are easy to create, and extremely difficult for users to detect as not authentic. In this paper, we discuss threats against online campaign donation systems, and the unique factors which make this type of online commerce particularly vulnerable to fraud based attacks. We explore the threat that phishing attacks utilizing typo squatting and cousin domain names could pose to the 2008 presidential election. Finally, we propose a realistic and cost-effective solution to the problem.
Number of Pages in PDF File: 18 working papers seriesDate posted: August 23, 2009 ; Last revised: August 31, 2009Suggested CitationContact Information
|
|
|||||||||||||||||||||||||||||||
© 2013 Social Science Electronic Publishing, Inc. All Rights Reserved.
FAQ
Terms of Use
Privacy Policy
Copyright
This page was processed by apollo2 in 0.531 seconds
