I've been saying it's time for banks to do this for a while now, but with 200 hacking attempts so far this year time is getting short. It's easy as 1-2-3 and two of them are done.
- Bank Issues Bankcard
- Bank Issues PIN
- Bank Issues Bankcard/PIN Reader and Eliminates username: password.
Source: spamfighter
Complete item: http://www.spamfighter.com/News-12372-Allied-Irish-Bank-Warns-Customers-against-Rising-Phishing-Attacks.htm
Description:
Given the surging attempts by cyber criminals to attack its online customers, Allied Irish Bank (AIB) has warned customers to be very careful while using online services. The Bank said that it had noticed phenomenal rise in phishing attacks in last few days.
Since the beginning of this year till April 2009, 200 hacking attempts had been made by cyber criminals to control people's online bank accounts, according to the reports. In fact, these statistics were equivalent to the overall hacking attempts made throughout 2008.
According to the security experts, cyber criminals send an e-mail pretending to have arrived from the bank to target bank customers. The text of the e-mail asks customers to click on the links to visit the bank's website.
However, it takes customers to a fake website appearing as the legitimate site of the bank and asked them to fill in their bank codes.
Editors Note: They wouldn't need to "fill in their bank codes" if they swiped instead of typed. Would they? And since the card holder data is instantaneously encrypted there's no data to be had. Continue with the way it's done now, SNAFU...and your customer get's had...and so do you. It's going to get worse...it's not going to get better, so what are you waiting for? It's as simple as 1-2-3 and two of the pieces are already in place!
Look for more and more of these to crop up. Oh...and here's an example of a Wells Fargo Cloned site: (click to enlarge...it's harmless...just a jpeg) or go to The Consumerist to read the story: Here's the LINK
However, it takes customers to a fake website appearing as the legitimate site of the bank and asked them to fill in their bank codes.
Editors Note: They wouldn't need to "fill in their bank codes" if they swiped instead of typed. Would they? And since the card holder data is instantaneously encrypted there's no data to be had. Continue with the way it's done now, SNAFU...and your customer get's had...and so do you. It's going to get worse...it's not going to get better, so what are you waiting for? It's as simple as 1-2-3 and two of the pieces are already in place!
Look for more and more of these to crop up. Oh...and here's an example of a Wells Fargo Cloned site: (click to enlarge...it's harmless...just a jpeg) or go to The Consumerist to read the story: Here's the LINK
0 comments