Malware Inside the Credit Card Machine

(Update, July 2009: A BusinessWeek article puts the company’s side; maybe I was a little too harsh on them in this post.) This gives you an idea of how bad malware is getting, and how much we’re underestimating it: a U.S.. company that processes credit card transactions has just revealed that malware inside its computers …

Continue reading ‘Malware Inside the Credit Card Machine’ »

Goertzel, Rugby and the Sweet-talking Scam

The South China Morning Post reports (I’ve got the hard copy here; everything there is behind a subscription wall, so no full link I’m afraid) of a clever scam where the bad guys steal just enough stuff — cards + identity — from a victim to be able to social engineer their way into trust, …

Continue reading ‘Goertzel, Rugby and the Sweet-talking Scam’ »

Elitism’s Big Security Hole

You would expect that if you choose an elite, premium product or service that it was more secure than its lesser, bog standard one. But after an incident today I’m not so sure. I happen to have a fancy premium account at my bank. I didn’t really want it, and object to such things on …

Continue reading ‘Elitism’s Big Security Hole’ »

Cash With a Human Face

Here’s a useful innovation for foiling scammers stealing money from ATMs with their heads covered to avoid identification: a system which “can distinguish between someone whose face is covered or uncovered, and only grant access to those who bare their faces.” No face, no dosh According to Taiwan’s Central News Agency (no story URL available; …

Continue reading ‘Cash With a Human Face’ »

Phishers Force UK Banks To Delay Transfers

Another sign that phishing is taking its toll on the quality of service banks can offer online customers: The Times reports that UK banks are introducing delays in intra-bank payments to try to combat fraudulent transfers caused by phishing attacks: This week Barclays introduced a one-day delay for transfers. A spokeswoman said: “This delay enables us …

Continue reading ‘Phishers Force UK Banks To Delay Transfers’ »

Cellphone Terrorism

My old colleague Nick Cumming-Bruce writes in today’s IHT on Thailand’s demand that prepaid cellphone users register before they get a SIM card as police continue on the trail of cellphone terrorists. Interesting piece: the basic idea is that you must hand over your name and address before getting a phone number as a measure …

Continue reading ‘Cellphone Terrorism’ »

Email For A Survey

AlienCamel, the email service that does a pretty good job of keeping out spam and viruses I’ve mentioned in the past, is offering a year’s Clean Email in return for feedback: We are looking for 50 special users who are willing to give us some feedback about our email service from time to time. In …

Continue reading ‘Email For A Survey’ »

A New Phish?

Not sure if this is new but I’ve not seen it before: A clever new piece of social engineering in a phishing email. You have added phoneseller@yahoo.com as a new email address for your PayPal account. If you did not authorize this change or if you need assistance with your account, please contact PayPal customer …

Continue reading ‘A New Phish?’ »