25m at risk from bank hack

February 6th, 2012 11 Comments By Mof Gimmers

hackers 25m at risk from bank hackThose pesky hackers are at it again, making a bee-line for Britain’s 25million internet banking users after cracking the latest generation of security devices. You know those calculator-style keypads you have, to help you set up payment and the like? Well, those naughty crims have cracked them.

Gary Clark, of data protection company Safenet, said the findings of a BBC investigation ‘raise serious questions’ over ordinary anti-virus protection. What is happening is that hackers have unleashed a bug that tricks users into taking part in training for an ‘upgraded security system’.

You log on, and they can harvest all that lovely information you give them from your device. From there, money is moved out of your account by a trick called ‘Man in the Browser’ (MitB).

Daniel Brett, of testing lab S21sec, told the BBC the attack is a ‘very specific, advanced threat, specifically focused against banking.’

The general advice seems to be along the lines of making sure your anti-virus/malware software is constantly up-to-date and, effectively, ignore any requests from your bank to complete any surveys.

Comments (11) Jump to most recent comment
  1. Posted by Mike Hock February 6, 2012 at 3:23 pm

    ‘Please enter your your security code’
    ‘Password’
    ‘Mothers maiden name’
    ‘passcode’
    ‘pets name’
    ‘your first school’
    ‘your favourite colour’
    ‘inside leg measurement’
    ‘far end of a fart’
    ‘your session has timed out’

  2. Posted by Mary Hinge February 6, 2012 at 3:26 pm

    What the fuck do the BBC know? All they know is how to make is ‘Downturn ‘Fucking’ Abbey’ as it’s being commonly referred to.

  3. Posted by LanceVance February 6, 2012 at 3:30 pm

    2543
    armPIT123
    Brown
    Umbrella
    Fluffy
    Gaylord First School
    Purpleygreen
    Trump

    Do i win a prize?

  4. Posted by Mike Hunt February 6, 2012 at 3:31 pm

    urmm…. isn’t Downton Abbey ITV?

  5. Posted by dt February 6, 2012 at 3:46 pm

    MH – fail =)

    I quite Like Downton Abbey!

  6. Posted by lumoruk February 6, 2012 at 4:09 pm

    haha MH oh dear.

  7. Posted by Sawyer February 6, 2012 at 6:48 pm

    I don’t understand. The headline and opening paragraph of both articles suggest a major hack (of what, I’m not sure), but the details describe something more akin to phishing, which is nothing new for banks.

  8. Posted by Al February 6, 2012 at 6:56 pm

    They haven’t really cracked the keypad things and this isn’t really anything new. The point is that you can have as many complicated passwords and keypads as you like but once a user is logged into somewhere they are at the mercy of whatever malicious software is in their browser/computer. The banks just need to give us more control over the security of our accounts. For example, why can’t I disable doing bank transfers to international destinations or disable transfers over £1000? If such a transaction happens then I’ll get prompted to ring the bank and enter the code from my keypad thingy. Users who do these things regularly can enable these transactions whereas those of us who don’t can prevent someone pocketing our cash.

  9. Posted by Alexis February 6, 2012 at 6:59 pm

    Handy tip – avoid Lloyds. Their online banking calculator / card machine is absolutely horrendous.

    If you need to pay 5 or 10 people through internet banking there is a very high chance you’ll commit suicide before getting to the end.

  10. Posted by Mike Hock February 6, 2012 at 8:22 pm

    Shows how much TV you sad cunts watch. I blame the BBC with their Downturn ‘Fucking’ Abbey.

  11. Posted by Gaylord Suckalot February 6, 2012 at 10:19 pm

    Mmm, I had the “Man in the Browser” withdraw a large wodge from me recently. Of course, I mean “Man in my Arse”. And I mean deposit.

Leave a Reply *(required)