I'm honestly surprised that I don't have any given the insane amount of junk (viruses, phishing scams, spam, etc) my mail servers have received over the years.
All it takes is one to cripple your company. If you're a small company, build an SMTP relay (
not on your accounting server, though) or pay
$10/mo/domain for one. If you're a very large company, look into solutions like
Postini.
One thing you might touch on is Mozilla Firefox's
cool anti-fishing features. Browser plugins like
spoofstick and
Netcraft's toolbar are also great at identifying bogus websites.
Here is a list from Netcraft on what their plugin does:
- Traps suspicious URLs containing characters which have no common purpose other than to deceive.
- Enforces display of browser navigational controls (toolbar & address bar) in all windows, to defend against pop up windows which attempt to hide the navigational controls.
- Clearly displays sites' hosting location, including country, helping you to evaluate fraudulent urls (e.g. the real citibank.com or barclays.co.uk sites are unlikely to be hosted in the former Soviet Union).
You might also suggest that
people report phishing attempts.
The next time you see a "click here to receive a free iPod" button, consider hitting that URL with the aforementioned Netcraft plugin. If it's bogus and you report it,
Netcraft might award you a top of the line iPod.