The Register reports “Boffins have come up with a new technique to protect users against more sophisticated forms of cybercrime”
Indiana University School of Informatics and affiliated start-up RavenWhite have developed an "active cookie" as a countermeasure against online scams such as pharming and man-in-the-middle attacks.
Phishing involves trying to trick users into handing over security credentials to bogus websites, prompted through spam messages that pose as as emails from online banking or retail outlets. Pharming takes this attack one step further by attempting to intercept communication of personal data between a user and a genuine enterprise website by installing spyware, or by subverting DNS servers to redirect users to bogus websites. The technique is quite cunning because, in both cases, a prospective mark tells users they are at the correct website.