Banks To Customers: You Have To Pay For Phishing

Good article in Australia’s BRW Magazine about phishing and banks. It makes some important points, not least that banks are still trying to talk down the problem while at the same time passing costs and risk onto the customer: Banks are desperate to assure their customers that internet banking is safe. But their actions are not …

Continue reading ‘Banks To Customers: You Have To Pay For Phishing’ »

Internet Banking And The Threat From Within

Saw a chilling presentation today from Fabrice A Marie of FMA-RMS at the Bellua Cyber Security Asia 2005 conference in Jakarta. Fabrice talked about Hacking Intenet Banking Applications, something he does for a living on behalf of banks around the region. Bottom line: They’re easy to hack. Of 15 banks’ application assessments he worked on …

Continue reading ‘Internet Banking And The Threat From Within’ »

A Glimpse Of The Internet Banking Future?

One bank in my town has stopped offering Internet banking, and suddenly I feel I can see the future post-phishing. Of course, the bank is not saying it’s abandoning Internet banking. Nor is it saying that the fact that now customers have to dial into a modem in the bank to access their account is …

Continue reading ‘A Glimpse Of The Internet Banking Future?’ »

The Phishing War Escalates

The guys at Netcraft, a British security consultancy that has done a good job of tracking, exploring and warning about phishing, say they’ve come across the first case of cross site scripting being used in the wild for phishing purposes. This isn’t as arcane as it sounds, since it allows phishers to make their lure …

Continue reading ‘The Phishing War Escalates’ »

Phear Of Phishing Doesn’t Just Hit The Bankers

Beware The Fear. The blizzard of coverage about phishing (usually involving some awful pun) has done a lot to raise awareness about the problem, but is it enough? A survey by Insight Express for Symantec of 300 people (no URL available yet, sorry) shows that while three quarters of folk are aware of spyware only …

Continue reading ‘Phear Of Phishing Doesn’t Just Hit The Bankers’ »

Contestant For Worst Phisher Of The Year Award

Phishing carries on, but it seems to be attracting the dregs of the scamming world as well as its masters. Here’s one I just received which must be in line for Worst Phishing Scam Of The Year Award: From:  Branch Banking and Trust Company[SMTP:SERVICE@BBANDT.COM] Subject:  Online banking issue Dear Branch Banking and Trust Company valued …

Continue reading ‘Contestant For Worst Phisher Of The Year Award’ »

Going Public With Sensitive Data

Forget phishing for your passwords via dodgy emails. Just use Wi-Fi. Internet security company Secure Computing Corporation have today released a report prepared by security consultants Canola/Jones Internet Investigations which “documents the serious risks of password theft that business travelers encounter when using the Internet in hotels, cafes, airports, and trade show kiosks.”  The full …

Continue reading ‘Going Public With Sensitive Data’ »