SentryBay have developed the first comprehensive anti-phishing protection that specifically protects users of a company’s web application. PhishLock is able to automatically prevent any user from submitting confidential information to a phishing site.
How it works
PhishLock is initially "trained" to identify a phishing site when it is loaded. This training is ongoing so adapts to any changes in phishing techniques.
When a phishing site loads, PhishLock automatically identifies it as a scam site and prevents the user from entering personal information such as login details and credit card numbers. PhishLock is capable of identifying phishing sites without the use of blacklists/whitelists.
PhishLock also immediately alerts the oganization of the phishing attack so that they can begin the process of closing the site down. This happens automatically when the first user loads a phishing website - without the need for anyone to report or discover it.
The diagram below demonstrates how the patent-pending PhishLock solution operates:
Benefits of PhishLock
Because PhishLock is pro-active and self-updating it is effective against any new phishing site. It also does not rely on any user input to be effective. Deploying PhishLock:
- Reduces fraud costs
- Prevents disruption to web services
- Prevents identity theft
- Attracts customers/increases revenue
- Avoids negative PR from phishing attacks
SentryBay provide a SDK with full details for the deployment of the PhishLock solution. The software is typically deployed via a small download from the customer's website.
The Complete Identity Theft Solution: Combined
Anti-Phishing/Key Logging/MITM Protection
Companies wanting comprehensive identity theft protection for their web service and its users can deploy the combined EntryProtect/PhishLock solution. This provides comprehensive protection against all the key internet threats - key logging, phishing, and MITM attacks. SentryBay's SDK provides full instructions for the deployment of this combined identity theft solution.