Why you should cover your a** when using on-line banking
-
It's not exactly a new problem, is it? A key logging trojan? The real crime here is that our systems are so wide open to this kind of abuse. I don't know how you stop it though, without restricting the flexibility that makes it all work for us in the first place. I guess the only solution is user education - and physical extermination for the culprits, of course...
Real men don't use instructions. They are only the manufacturers opinion on how to put the thing together.
OriginalGriff wrote:
The real crime here is that our systems are so wide open to this kind of abuse.
True.
OriginalGriff wrote:
I don't know how you stop it though
I don't have a clue where to begin, apart from the 25 AV programs I run. :-D
OriginalGriff wrote:
I guess the only solution is user education
That is true, but, in an ideal world, it shouldn't be necessary. Internet capable devices should be secure out of the box.
Henry Minute Do not read medical books! You could die of a misprint. - Mark Twain Girl: (staring) "Why do you need an icy cucumber?" “I want to report a fraud. The government is lying to us all.”
-
OriginalGriff wrote:
The real crime here is that our systems are so wide open to this kind of abuse.
True.
OriginalGriff wrote:
I don't know how you stop it though
I don't have a clue where to begin, apart from the 25 AV programs I run. :-D
OriginalGriff wrote:
I guess the only solution is user education
That is true, but, in an ideal world, it shouldn't be necessary. Internet capable devices should be secure out of the box.
Henry Minute Do not read medical books! You could die of a misprint. - Mark Twain Girl: (staring) "Why do you need an icy cucumber?" “I want to report a fraud. The government is lying to us all.”
-
Very efficient, but honestly, it can be a real PITA if you have several transfers to do and/or your phone has no battery or sleeps home when you are away...
At least it is secure first, user friendly a close second. Many are user friendly first, secure a distant second.
Henry Minute Do not read medical books! You could die of a misprint. - Mark Twain Girl: (staring) "Why do you need an icy cucumber?" “I want to report a fraud. The government is lying to us all.”
-
It’s true.. But it also depends on how and where you are doing transaction on line..
-
Henry Minute wrote:
in an ideal world
In an ideal world, nobody would go phishing your bank credentials.
In an ideal world there wouldn't be banks. :laugh:
Henry Minute Do not read medical books! You could die of a misprint. - Mark Twain Girl: (staring) "Why do you need an icy cucumber?" “I want to report a fraud. The government is lying to us all.”
-
It’s true.. But it also depends on how and where you are doing transaction on line..
keyur soni wrote:
But it also depends on how and where you are doing transaction on line..
Most of the computers in the article were in people's homes. So that isn't necessarily true, although, if I did do banking on-line, I certainly wouldn't use an internet cafe to do it.
Henry Minute Do not read medical books! You could die of a misprint. - Mark Twain Girl: (staring) "Why do you need an icy cucumber?" “I want to report a fraud. The government is lying to us all.”
-
So the moral of this story is: Don't open attachments in e-mails, don't enter credentials into websites without making sure they've got the right URL, yadda, yadda, and yadda. These friggin' scare stories piss me off. I have to enter three separate codes to be able to pay money out. "Passing those codes back to the creator" would be pointless, because they're generated on the spot, and are valid for only a few minutes -- but they wouldn't be "passed back to the creator", because I don't open attachments in e-mails, I don't enter credentials into websites without making sure they've got the right URL, yadda, yadda, and yadda. Web security really ain't rocket surgery.
the one rule to remember is: Don't be f***in' stoopid!
-
OriginalGriff wrote:
The real crime here is that our systems are so wide open to this kind of abuse.
True.
OriginalGriff wrote:
I don't know how you stop it though
I don't have a clue where to begin, apart from the 25 AV programs I run. :-D
OriginalGriff wrote:
I guess the only solution is user education
That is true, but, in an ideal world, it shouldn't be necessary. Internet capable devices should be secure out of the box.
Henry Minute Do not read medical books! You could die of a misprint. - Mark Twain Girl: (staring) "Why do you need an icy cucumber?" “I want to report a fraud. The government is lying to us all.”
Henry Minute wrote:
Internet capable devices should be secure out of the box.
By and large they are. Install a base version of Windows Server 2008 R2, or Windows 7. Firewalls are on by default, code downloaded from the internet can't be executed (it can't even be downloaded on Server 2008). The problem is that people want their computers to do things, and they want to do those things, and sometimes don't really understand or care about the consequences. Anything that gets in the way is just an annoyance, to be switched off at the earliest opportunity.
-
-
I trust mine, for every transaction I have to input my pin + a code given by the site (and never the same one) into a unattached device, I then have to input another code given to me by the device. So I never enter my pin or any other personal data onto my computer.
-
I fear that you have posted your interesting opinion in the wrong thread. I am cheesy enough without additions, thank you anyway. :)
Henry Minute Do not read medical books! You could die of a misprint. - Mark Twain Girl: (staring) "Why do you need an icy cucumber?" “I want to report a fraud. The government is lying to us all.”
-
-
So the moral of this story is: Don't open attachments in e-mails, don't enter credentials into websites without making sure they've got the right URL, yadda, yadda, and yadda. These friggin' scare stories piss me off. I have to enter three separate codes to be able to pay money out. "Passing those codes back to the creator" would be pointless, because they're generated on the spot, and are valid for only a few minutes -- but they wouldn't be "passed back to the creator", because I don't open attachments in e-mails, I don't enter credentials into websites without making sure they've got the right URL, yadda, yadda, and yadda. Web security really ain't rocket surgery.
the one rule to remember is: Don't be f***in' stoopid!
:doh:
-
To make a transfer from my account to another account, I have to provide a code sent to my mailbox that has a lifespan of 5minutes, and another code sent by SMS. I trust on-line banking a lot.
-
-
According to the report it's the seurity of individual PCs that is the problem here, not the banks' systems.
Just say 'NO' to evaluated arguments for diadic functions! Ash
Please do not spoil a good paranoid episode with your facts!!:mad: :laugh:
Henry Minute Do not read medical books! You could die of a misprint. - Mark Twain Girl: (staring) "Why do you need an icy cucumber?" “I want to report a fraud. The government is lying to us all.”
-
Please do not spoil a good paranoid episode with your facts!!:mad: :laugh:
Henry Minute Do not read medical books! You could die of a misprint. - Mark Twain Girl: (staring) "Why do you need an icy cucumber?" “I want to report a fraud. The government is lying to us all.”
-
CharMap, Cut and Paste - one in the eye for keyloggers.
I have CDO, it's OCD with the letters in the right order; just as they ruddy well should be
Forgive your enemies - it messes with their heads
-
There were problems with somebody abusing my account (buying junk, changing addresses) and it happened a couple times even after a password and account name change. I had the bank up the security so every time I talk to them on the phone I must give them a master password before they will make any changes. Since then, they have never once asked for that password while talking on the phone. :doh: Not a fan of bank "security".
-
There were problems with somebody abusing my account (buying junk, changing addresses) and it happened a couple times even after a password and account name change. I had the bank up the security so every time I talk to them on the phone I must give them a master password before they will make any changes. Since then, they have never once asked for that password while talking on the phone. :doh: Not a fan of bank "security".
Some seem to be better than others, like Rage's, but yeah I'm with you there.
Henry Minute Do not read medical books! You could die of a misprint. - Mark Twain Girl: (staring) "Why do you need an icy cucumber?" “I want to report a fraud. The government is lying to us all.”
