University Xyz, Phishing, And Legal Aspects

1463 Words Dec 12th, 2015 6 Pages
University XYZ, Phishing, & Legal Aspects
Since our sponsor university is located in Massachusetts, where there is no direct single state law on anti-phishing. It is important to understand legal phishing definition, and laws applicable if University XYZ faces any phishing attack. In this section, apart from explaining federal statute and related punishment for phishing attack, details are given on government agencies that University XYZ can approach for phishing attack investigation.

In legal terms, phishing is an attempt to acquire personal information by masquerading as a trustworthy entity through an electronic communication. First Anti-Phishing Act was drafted in 2005 to regulate phishing attacks, which did not passed. However it worked as a foundation when many states decided to pass their own anti-phishing law.
The Anti-Phishing Act sponsored in the Senate by Patrick Leahy (D-VT) is a bill that calls to criminalize fraudulently obtaining personal information. This essentially focuses on criminalizing two actions :
1. Establishing and creating web sites with the intent to gather information from victims to be used for fraud or identity theft
2. The creation or soliciting of e-mail that represents itself as a legitimate business with similar intent

Attackers used different strategies to deceive victims in phishing scams to fetch PII (Personally Identifiable Information) or financial information. One of the most common and popular strategies is to send emails to…

More about University Xyz, Phishing, And Legal Aspects

Open Document