Omega Owners Forum
Chat Area => General Discussion Area => Topic started by: STMO123 on 26 June 2011, 09:08:29
-
I've just had an email from one of my banks, a genuine one, telling me the usual stuff about staying secure online. There is one piece of advice I've never come across: Do not keep a shortcut to your banks etc. in your favourites. Why? :-/
-
Maybe because people will know who you bank with? Seems odd to be honest :-?
-
Maybe because people will know who you bank with? Seems odd to be honest :-?
Been having a think about it. When I go from favourites to the front page of my bank(s), I have usually saved my membership number, and the 'next' button takes you to the password page. So perhaps it is to save you from revealing your membership/customer number but, if that is the case, surely you would have to delete your history after every visit? :-/
-
It could be that the link that would be saved in your favourites might contain FORM data that is encrypted in the stored cookies? Such as banking ID? I can't think any hack that I know of where saving to favourites would be used..... Might just be some amateur who thinks he knows what he is talking about :-/
-
It could be that the link that would be saved in your favourites might contain FORM data that is encrypted in the stored cookies? Such as banking ID? I can't think any hack that I know of where saving to favourites would be used..... Might just be some amateur who thinks he knows what he is talking about :-/
I'll email santander and tell them they are amateurs, Matt ;D
-
Dear Mr ,
At Santander we know protecting your identity is important, that´s why we´re always looking at ways to guard you from identity theft and fraud. We´re also committed to help you use our online service securely. So here´s what we´re doing to make sure your personal information stays safe.
Our promise to you, we will;
Never ask you for your security passwords (such as logon details) or PINs via email or when we call you.
Always address emails to you personally using your title and surname.
As an added security measure, we will always include the last three characters of your postcode on any marketing email we send you or quote the last four digits of your account number in order to identify ourselves to you.
Provide you with free security software to help you stay safe online.
Don´t forget that when you want to access Santander Online Banking, never click on links or pictures in emails, and avoid setting santander.co.uk as a favourite in your browser.
Regards,
Fraud Prevention Team
-
maybe someone could access your pc, edit the url, and set it to go to a cloned site to rob your details.
far better ways of accomplishing the same thing, but its a possible
-
It says its from the fraud prevention dept, they actually aren't actually it security experts per se they create policy and procedure based on fraud that takes place.
If the idea is so that a hacker wontknow who you bank with then you would have to delete your browsing history on a regular basis as well.
-
This is all very disturbing for an old fella like me, but I have no choice other than to use banks. All of my matressess are full. :o
-
I think I'll have to buy my son his own computer, or myself a cheap laptop for banking etc. He and his mate are at some very odd places when I peer over their shoulder.
-
you are accesing your bank through the telephone lines right.. any techie, knowing your bank can listen both ips and the transactions..
-
you are accesing your bank through the telephone lines right.. any techie, knowing your bank can listen both ips and the transactions..
Thanks Cem, that's cheered me right up :(
-
you are accesing your bank through the telephone lines right.. any techie, knowing your bank can listen both ips and the transactions..
Thanks Cem, that's cheered me right up :(
I wanted to cheer you up, so I'm successful :P ;D
-
With a bit of luck, they might feel sorry for me and stick some money in :y ;D ;D
I bet when they see my credit rating, they will soon delete my details ;D
you are accesing your bank through the telephone lines right.. any techie, knowing your bank can listen both ips and the transactions..
-
the main reason the banks advise to type it into the address bar is so that you know it hasn't been placed or overwritten in your favourites by a dodgy website.
-
the main reason the banks advise to type it into the address bar is so that you know it hasn't been placed or overwritten in your favourites by a dodgy website.
That makes sense :y
-
Had a cracker last week, had some issues logging onto my halifax online and without a prompt it said we will reset and resend your log on details which they duly did........TO MY EXES HOUSE !who I split with 8 yrs ago and have been receiving all statements etc at my new address since then.
Still awaiting a response!
-
you are accesing your bank through the telephone lines right.. any techie, knowing your bank can listen both ips and the transactions..
Thanks Cem, that's cheered me right up :(
Possible but unlikely when using online banking. SSL hacks have circumvented paypal and other simple sites (like credit cards) but it has never been used against online banking as there are other protective measures in place. You are more at risk from trojans with keylogging threats.
-
you are accesing your bank through the telephone lines right.. any techie, knowing your bank can listen both ips and the transactions..
Thanks Cem, that's cheered me right up :(
Possible but unlikely when using online banking. SSL hacks have circumvented paypal and other simple sites (like credit cards) but it has never been used against online banking as there are other protective measures in place. You are more at risk from trojans with keylogging threats.
-
My bank recommended this :- http://www.trusteer.com/
It's free.
-
I wonder who Citibank recommend. They got hacked a couple of weeks ago. :(
-
I wonder who Citibank recommend. They got hacked a couple of weeks ago. :(
Not for the first time either.....
-
you are accesing your bank through the telephone lines right.. any techie, knowing your bank can listen both ips and the transactions..
Thanks Cem, that's cheered me right up :(
Possible but unlikely when using online banking. SSL hacks have circumvented paypal and other simple sites (like credit cards) but it has never been used against online banking as there are other protective measures in place. You are more at risk from trojans with keylogging threats.
they can rob heavily guarded "safe" banks.. physically ;D
let alone the internet and your home pc.. nothing is completely safe.. internet and safety is a bit optimism imo :)
-
My bank recommended this :- http://www.trusteer.com/
It's free.
It protects against keylogging.
-
My bank recommended this :- http://www.trusteer.com/
It's free.
It protects against keylogging.
Well, it might protect against certain known trojans that do key logging, but It'd be stretching it to say it protects against all instances of key logging.
Anyone got a wireless keyboard? ;)
-
My bank recommended this :- http://www.trusteer.com/
It's free.
It protects against keylogging.
Well, it might protect against certain known trojans that do key logging, but It'd be stretching it to say it protects against all instances of key logging.
Anyone got a wireless keyboard? ;)
Any protection is better than nothing :y
-
My bank recommended this :- http://www.trusteer.com/
It's free.
It protects against keylogging.
Well, it might protect against certain known trojans that do key logging, but It'd be stretching it to say it protects against all instances of key logging.
Anyone got a wireless keyboard? ;)
Any protection is better than nothing :y
If it lulls you into a false sense of security, that's debatable.
-
My bank recommended this :- http://www.trusteer.com/
It's free.
It protects against keylogging.
Well, it might protect against certain known trojans that do key logging, but It'd be stretching it to say it protects against all instances of key logging.
Anyone got a wireless keyboard? ;)
Any protection is better than nothing :y
If it lulls you into a false sense of security, that's debatable.
No it doesn't, it's as KW said, any internet security package will only protect you against know threats.
-
These are the companies that endorse it:-
Alliance Bank of AZ Alliance & Leicester Alta Alliance Bank Amegy Bank Auto Trader UK BancFirst Bangor Savings Bank BankFIRST Bank of America Bank of Cyprus UK Bank of Montreal Bank of Nevada Bank of the West
BBVA Compass BOK Financial Boursorama Cambridge Savings Bank Carolina First Bank Central Bank KY Charter One CIBC CNB Bank CoBiz Financial Commerce Bank WA Coutts CoVantage Credit Union
Coventry Building Society eBay Ever Bank F&M Bank Fifth Third Bank first direct First Independent NV First Republic Bank Hancock Bank Harris Bank HSBC Huntington National Bank IBC Bank
ING DIRECT Canada ING DIRECT USA iTransfer Mercantile Bank Metro Bank Mid-Atlantic Corporate National Bank of Arizona Nationwide NatWest NBC Bank Nedbank NEFCU Nevada State Bank OceanFirst Bank
OnVista Bank PayPal Peoples Bank OH,WV,KY Peoples Bank (MO) President’s Choice Financial PSECU RBS Citizens Riverview Community Bank The Royal Bank of Scotland Santander Santander Rio Selfbank Selftrade ShareBuilder
SiebertNet Smile Somerset Hills Bank Standard Bank SunTrust Synovus Co-Operative Bank Torrey Pines Bank Ulster Bank United Bank USAmeriBank Valley National Vectra Bank Zions Bank
Reasonably impressive.
-
The banks would love you to think they are the epitomy of electronic security. HSBC are about to roll out an electronic PIN generator saying they're the first to do it. BACS did it 15 years ago or more (albeit to a smaller client-base).
I am quite used to having lists of qualifications thrown at me on the security front - once it was "this guy here used to work for NASA in security systems" and I was equally unimpressed then. The phrase creates an impression but is meaningless when analysed. He came and went.
-
The banks would love you to think they are the epitomy of electronic security. HSBC are about to roll out an electronic PIN generator saying they're the first to do it. BACS did it 15 years ago or more (albeit to a smaller client-base).
I am quite used to having lists of qualifications thrown at me on the security front - once it was "this guy here used to work for NASA in security systems" and I was equally unimpressed then. The phrase creates an impression but is meaningless when analysed. He came and went.
I've had an electronic log in device for ages. Barclays PINsentry.
-
The banks would love you to think they are the epitomy of electronic security. HSBC are about to roll out an electronic PIN generator saying they're the first to do it. BACS did it 15 years ago or more (albeit to a smaller client-base).
I am quite used to having lists of qualifications thrown at me on the security front - once it was "this guy here used to work for NASA in security systems" and I was equally unimpressed then. The phrase creates an impression but is meaningless when analysed. He came and went.
I've had an electronic log in device for ages. Barclays PINsentry.
Perhaps they meant an RSA token rather than the card prompted system; although Lloyds trialled that ages ago (they put my retired parents on the trial but not me ;D )