A few days ago I discovered a new technique that Yahoo! is using to stem phishing attempts on their network.

Definition of phishing from Wikipedia:
In computing, phishing is microsoft office discount software a criminal activity using social engineering techniques. Phishers attempt to fraudulently acquire sensitive information, such as passwords and microsoft office discount software credit card details, by masquerading as a trustworthy person or business in an microsoft office discount software electronic communication. Phishing is typically carried out using email or an microsoft office discount software instant message, although phone contact has been used as well. Attempts to microsoft office discount software deal with the growing number of reported phishing incidents include legislation, user training, and microsoft office discount software technical measures.

When a microsoft office discount software user logs in, they see in the upper right corner of the microsoft office discount software login panel an image asking them to identify this computer and microsoft office discount software protect themselves. Clicking on this microsoft office discount software button pesents a nifty DHTML interface to create a custom “seal”. This seal will appear in the microsoft office discount software login panel every time that a user accesses a real Yahoo! server, and will not appear is they are on a phisher’s site where a password is trying to be stolen.

Will this technique really work? I think that he theory is sound, but I’m no security expert. I am mostly impessed by Yahoo’s creative approach to microsoft office discount software the problem and their advanced interface to build a seal.