A few months ago, the Exploratorium in San Francisco had its network compromised due to a phishing attack. An employee hurriedly filled out her credentials in what looked like a Google Docs sign-in but was actually a hacker's fake site. The hacker then used her credentials to steal 54 other employee passwords.<p>Current solutions to phishing are limited to forcing employees to attend training to spot these hacks and attempting to judge the URL's reputation. People don't have time to pay attention to every url they click. This is especially true when faced with deadlines. Even the technical systems we have in place to detect these sites rely on the URL's reputation. This strategy fails in targeted attacks like the Exploratorium and is reactive at best.<p>I created Off The Hook to have a proactive response to phishing sites. Off The Hook is an extension that visually inspects webpages as a human would do and recognizes when pages look like valid sites. Rather than relying on reputation systems and employee training, I automated the behavior the training hoped to instill. If the page looks like a valid site but isn't a URL that we'd expect that site to be at, then we throw a red flag and get the user out of there. If you're interested, download the extension here:<p>https://chrome.google.com/webstore/detail/off-the-hook/ifjmdiningdigdchbidbjjpefhdadjeg<p>And give it a try by visiting these "bad sites" here:<p>http://ec2-35-165-195-195.us-west-2.compute.amazonaws.com/gSignin.png<p>http://ec2-35-165-195-195.us-west-2.compute.amazonaws.com/chase.png
The Exploratorium's blog post on being hacked:<p><a href="https://www.exploratorium.edu/blogs/tangents/we-got-phished-2" rel="nofollow">https://www.exploratorium.edu/blogs/tangents/we-got-phished-...</a>