This London bank raid seems impressive: The investigation was started last October after it was discovered that computer hackers had gained access to Sumitomo Mitsui bank’s computer system in London. They managed to infiltrate the system with keylogging software that would have enabled them to track every button pressed on computer keyboards. Of course, it’s… Read More »
Phishers are smart, and banks are dumb. At least, it seems that way. Here’s another example of what’s called a cross site scripting vulnerability attack, which basically lures the victim to what seems, both in the phishing email and in the website it links to, to be a genuine website belonging to Charter One Bank.… Read More »
Sorry about the absence of posts in the past few days. I have a good excuse — promise. Anyway, about a year ago I mentioned a Hong Kong bank that misled customers by telling them, after they had logged off their online account, that they had ‘logged out, but hadn’t logged off’ or somesuch. A… Read More »
One bank in my town has stopped offering Internet banking, and suddenly I feel I can see the future post-phishing. Of course, the bank is not saying it’s abandoning Internet banking. Nor is it saying that the fact that now customers have to dial into a modem in the bank to access their account is… Read More »
Good piece in this month’s US Banker magazine on phishing. Some tidbits: Phishing is getting more and more sophisticated. I’ve detailed some of those tricks in this blog, but here’s one I hadn’t heard of: Crooks [the unfortunately named Ted Crooks, vp of identity protection solutions at Fair Isaac] says that “the level of cleverness… Read More »