|
News Index
Next
Previous
Four out of seven online banks have failed to secure their sites after being
alerted over a month ago by information security research and publishing company heise Security, to serious security issues on their web pages for online
banking.
In September heise Security published an article demonstrating that many on-line
banks were taking too few precautions to protect their customers from phishing
attacks.
Although some have reacted positively to this and improved their sites, others
seem to have made no changes to their sites, and the responsibility for avoiding
phishing scams is still left entirely with their customers.
The original demonstration inserted a fake web page into the online banking page
leaving the user almost no chance to detect the scam.
The original demonstration tests for Cahoot, the Bank of Scotland and First
Direct all worked a month later, suggesting that no action has been taken to
tighten up procedures.
Of the six banks found to be vulnerable to frame spoofing only two have been
able to implement proper protective measurements during the last month.
Four are still vulnerable to phishing attacks.
Source:
Getting Paid
|
