Enable the Phishing Setting for Firefox, Internet Explorer, Opera, Chrome & Safari Browser

using Skype for social engineering screenshot

Phishing is a scam to obtain sensitive data, employing misleading emails and websites. All those spammy emails you get asking you to update your online banking details? Phish.

If you inadvertently click through one of those emails, your properly configured web browser will detect a scam, alert you and report the fraud. Hopefully. The alternative is that you download some malware or other, possibly for instance logging your activity, your online banking and so on. Nice.

UPDATE Feb 2012

This post is old. The theory's on the nail but the practise is worn.

Want best, up-to-date advice? Check out Guvnr's new sister site, wpCop.

Specifically, web.wpCop.com shows how to navigate the malicious minefield that is the www.

Any security queries, pop by the wpCop forums and I'll try to help.


So two things: 1. Be hyper-vigilant when reading email, understanding that even mail that is apparently from a pal could be bogus and 2. enable your web browser's phishing defense.

Browser-specific defense from phishing

In-browser protection inevitably slows down surfing but, then again, it adds worthwhile protection. So let's enable those browser-specific phishing settings.

Setup Unmanaged VPS (4 Noobs!) ... with vpsBible
Secure WordPress. Properly. ... with wpCop, the platform's dedicated security website
Olly 'the_guv' Connelly's vpsBible.com site and 'WordPress 3 Ultimate Security' book.


  • Tools > Options > Security > [check] Tell me if the site I'm visiting is a suspected attack site
  • Tools > Options > Security > [check] Tell me if the site I'm visiting is a suspected forgery

Internet Explorer 7

  • Tools > Phisihing Filter > Turn on Automatic Website Checking > [check] Turn on Automatic Phishing Filter

Internet Explorer 6 – if you're using that browser, you should go to Windows Update and upgrade to IE7 (or bin it altogether for Opera, Chrome or Firefox!)


  • Tools > Preferences > Advanced > Security > [check] Enable Fraud Protection


  • Customise > Options > Under The Hood > Security > [check] Enable phishing and malware protection


Do nothing. Anti-phishing is built in as standard.

Don't become phish-food

With all browsers, with phishing settings enabled, you'll be warned about a dodgy site before you reach it. Hopefully *.

Hopefully * is a keyword. 😉 Surf safe.

What have I forgotten? Tons probably. Your comments are valued …


About the Author:

Olly Connelly (yeah, that's me) blogs at guvnr.com, polices WordPress security at wpCop.com and helps noobs build web servers at vpsBible.com, so if you've got sleeping problems you know where to come.


  1. the_guv  August 4, 2009

    @Kevin .. thank you, handy tip

  2. Kevin Walsh  August 4, 2009

    In addition to the settings in IE, you can also try the free plugin from http://www.parentapproval.com/

  3. the_guv  January 25, 2009

    @Mr Niko – you’re welcome.

  4. Mr Niko  January 25, 2009

    So that is how you do it. Thanks.

Add a Comment