Startup OpenDNS has launched a service called PhishTank, designed to put the process of identifying scam websites out into the public. The service works on a principle similar to collaborative bookmark sites such as Digg, by allowing registered users to submit and vote on the validity of phishing URLs. Even if one user makes a mistake, the community should get it right, the logic goes. When a certain number of users verify a site, it goes into a phishing database, which can be fed into antiscam software via an open application program interface. URLs can be submitted by email or via the PhishTank website, which officially launched last week. As of Monday morning, 2,240 sites had been submitted, with 874 verified. The top submitter, using the handle “spamfighter,” had sent in 332 sites. OpenDNS contrasted the service to offerings from the likes of Symantec and McAfee that take a more proprietary approach. “Unlike other antiphishing efforts that may come to mind, PhishTank is totally free to use and open to access,” said OpenDNS’ Allison Rhodes in a statement. OpenDNS offers an alternative to ISPs’ default domain name lookup services, promising faster Web surfing and antifraud services. The company fuels its antifraud whitelist from various sources, now including PhishTank. “Once the PhishTank community collectively verifies a phish, we conduct an additional layer of checks and balances and ultimately block the phish for OpenDNS users,” Rhodes stated. In its first few days, the service has run into a few hiccups, such as a problem that created duplicate URLs and some ambiguity over addresses that redirect to other sites. The duplicate URL problem has now been fixed, OpenDNS said. The service will get more features and feeds in the coming days. OpenDNS plans to add Mail Transfer Agent information from phishing emails to the API, as well as whois and Autonomous System Number (ASN) information. OpenDNS wants to create RSS feeds for ISPs and Web-hosting companies based on ASN, allowing them to target and hopefully shut down phishing sites on their own networks. Another upcoming feature will be a regularly updated text file that lists every verified phishing site, which OpenDNS plans to offer sometime this week, the company said on Friday.-Matthew Broersma, Techworld.com (London)Related Links: Killing Phish First Phishing, Now Vishing Record Number of Phishing Sites Seen in JulyCheck out our CIO News Alerts and Tech Informer pages for more updated news coverage. Related content opinion Website spoofing: risks, threats, and mitigation strategies for CIOs In this article, we take a look at how CIOs can tackle website spoofing attacks and the best ways to prevent them. By Yash Mehta Dec 01, 2023 5 mins CIO Cyberattacks Security brandpost Sponsored by Catchpoint Systems Inc. Gain full visibility across the Internet Stack with IPM (Internet Performance Monitoring) Today’s IT systems have more points of failure than ever before. Internet Performance Monitoring provides visibility over external networks and services to mitigate outages. By Neal Weinberg Dec 01, 2023 3 mins IT Operations brandpost Sponsored by Zscaler How customers can save money during periods of economic uncertainty Now is the time to overcome the challenges of perimeter-based architectures and reduce costs with zero trust. By Zscaler Dec 01, 2023 4 mins Security feature LexisNexis rises to the generative AI challenge With generative AI, the legal information services giant faces its most formidable disruptor yet. That’s why CTO Jeff Reihl is embracing and enhancing the technology swiftly to keep in front of the competition. By Paula Rooney Dec 01, 2023 6 mins Generative AI Digital Transformation Cloud Computing Podcasts Videos Resources Events SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe