talks well about phishing

The difference between this book and other books on spam published as recently as a year ago is the extensive discussion given here on phishing. The latter has grown enormously in 18 months. Earlier antispam books gave it little or no mention.

But Gregory points out that while "regular" spam might or might not be fraudulent, phishing always is. He thus places it not as a subset of spam, but as a different category of malware. So while the book has a decent explanation of spam, this is indistinguishable from that given in other texts. Rather, the distinguishing feature of this book is the phishing explanation.

As for what he offers for remedies, he basically says that end user education is the only answer. The book does not describe any effective, known technological solution. So the fallback policy is the user education.

In contrast, our company [Metaswarm] has 16 US Patents Pending on antiphishing. Qualitatively different from anything described in the book. Which is no detraction from the book, as it provides a good summary of the public state of the art.

We believe our Pendings will squash phishing.

Other Reviews

• A decent overview for the beginner
• Good Overview and Some Things You Can Do
• talks well about phishing