CallingID Announces Anti-Phishing Solution that Helps Banks Meet FDIC Recommendations

Dallas, TX, August 9, 2005, CallingID (www.callingid.com ) has announced Safety Seal for Online Banking an automatic solution that protects banks and their customers from attempts to steal personal details used to access online bank accounts. Safety Seal helps banks meet the recommendations of the Federal Deposit Insurance Corporation (FDIC) since their customers are protected from phishing, pharming and Trojans. Safety Seal complements CallingID’s basic solution, CallingID for the Internet that protects all users accessing any web site by providing them with immediate information about the owner of the site, its address and risk assessment that indicates whether it is safe to submit personal data to the site.

“Safety Seal helps banks comply with the latest two FDIC recommendations: June recommendation for a reliable form of authentication when customers access their account online, and July recommendation for protecting their customers against spyware,” said Yoram Nissenboim, CallingID CEO, “The banks will also be considered by their customers as proactive at protecting their interests and removing the barriers for executing online transactions.”

CallingID for the Internet protects all users that access any web site by providing information on the authenticity of the site. CallingID automatically provides the user with information about the website ownership, including location, and verifies that the owner is a real organization. If the site owner hides its identity the user is immediately warned. If any of the information is suspicious, like a location in an unexpected country, users are advised to rethink their intention to submit personal information or to place an order from that site. CallingID automatically executes 52 different verification tests and summarizes the results in a simple conclusion: “verified”, “low risk” or “high risk”.

Safety Seal for Online Banking adds two extra protection features:
– The user cannot login by mistake to a site which is not a real site of the bank. CallingID detects such attempts before the user submits the data and alerts the user to stop.
– Even if the user’s computer is infected by spyware or Trojan software, his login parameters cannot be identified by that software.

When a bank registers with Safety Seal for Online Banking, all its customers receive a complete solution including CallingID for the Internet and they are well protected.

A personal copy of CallingID for the Internet can be downloaded for free from www.callingid.com . Installation is fast and simple.

Scammers use sophisticated technologies to log into their victims’ online bank accounts and transfer money from them. Their main technologies are phishing and Trojans. Phishing sites are bogus sites that fool users into thinking that they have reached their bank’s real site, causing them to login to their account. Trojans are programs that penetrate PCs. They use key logger to detect the keystrokes used to login to bank accounts and transfer these parameters to the scammers. Even users that login to their account using sophisticated authentication technologies like mutual authentication or tokens that generate one time passwords, are not well protected against the new threats. An attack known as man-in-the-middle can be used to let them login to their account through a site that acts as a proxy and once logged in, a scammer can continue the session and execute transactions on their behalf using their stolen identity. CallingID Safety Seal for Online Banking protects customers against these threats. Transparent to the user, it encrypts the keystrokes that the user types using public key infrastructure (PKI) and provides key loggers with false results. Safety Seal uses special technologies that detect users’ attempts to login to phishing sites, even when the bogus site uses combinations of advanced technologies like man-in-the-middle and DNS spoofing, and alerts the user before data is submitted.

About CallingID

CallingID is a web privacy software company committed to providing critical information needed by its users to protect them from inadvertently submitting information to hostile websites. CallingID’s approach is a natural extension of the phone-based Caller-ID services used to identify callers. CallingID’s offices are located in Dallas, Texas and the R&D team is based in Haifa, Israel