Phishing And The Pop-up
Speaking to Well Fargo Online’s Wendy Grover this morning, I realised there’s a dimension to the debate about pop-ups that hadn’t occurred to me before: Phishing.
The central argument used by companies such as Wells Fargo in their long-running litigation against the likes of WhenU and Gator (now Claria) is that they confuse the user. These services, they say, hoodwink the user into downloading software that will track their browsing habits and, in the case of WhenU, replace existing ads on a website with their own. Surveys, Wendy Grover says, baffle the end user who didn’t know the software was installed and believe the pop-up ads they do see are from the website itself, not WhenU.
Until lately this was all a little academic. Privacy issues were at the fore. But now that banks and financial institutions are being targeted by sophisticated scammers who create convincing looking emails and websites to fool users into entering their passwords, it no longer seems so. If users are confused about the origin pop-ups on banking websites, then it illustrates their vulnerability to being duped by an entirely fake website. Wells Fargo themselves have been the target of several phishing expeditions.
Customers, we have to acknowledge, do not know exactly what’s going in their browser, and while educating them helps, misleading programs adding third party content don’t. ”It’s very important that customers know where they are and where they’re entering their information,” says Grover. I’d tend to agree.