Most Bank Sites Are Insecure

by on Aug 13, 2008 | 1 comment

A ran across a rather alarming article today which I “borrowed” the name of this post from: “Most Bank Sites Are Insecure“. From the article:

The vulnerabilities identified by the authors aren’t fixable with a simple patch. Rather, they are issues like login boxes, information submission forms, security information, and contact information placed on insecure pages; redirections outside the bank’s domain without warning; allowing insecure user IDs and passwords; and e-mailing sensitive information insecurely.

Granted, the study this article is based on was conducted in 2006 and the author mentions some of the vulnerabilities have been addressed since then. Regardless, what it really boils down to is how careful you are when you are on a public network:

[H]e advises not panicking because exploiting the vulnerabilities that he and his students found is not easy. In general, he said these flaws become an issue on potentially insecure networks, such as a wireless network not under your control or on a hotel’s network.

If you take nothing else from this, just be wary of where you go when you are on a public network, such as in an airport or coffee shop. You never know who is sitting behind you…

Free eBook!

Like what you read?

If so, please join over 28,000 people who receive our exclusive weekly newsletter and computer tips, and get FREE COPIES of 5 eBooks we created, as our gift to you for subscribing. Just enter your name and email below:

Post A Comment Using Facebook

Discuss This Article (Without Facebook)

One comment

  1. Computer Repair / August 13, 2008

    This is just to say that there is no such thing as bullet proof security measure, all you can do is to minimize the Risk. Now it is certainly a big problem when you have in mind that bank security is at risk and potentially put you money at risk.

    Reply

Leave a Reply

PCMech Insider Cover Images - Subscribe To Get Your Copies!
Learn More
Every week, hundreds of tech enthusiasts, computer owners
and geeks read The Insider, the digital magazine of PCMech.

What’s Your Preference?

Daily Alerts

Each day we send out a quick email to thousands of PCMECH readers to notify them of new posts. This email is just a short, plain email with titles and links to our latest posts. You can unsubscribe from this service at any time.

You can subscribe to it by leaving your email address in the following field and confirming your subscription when you get an email asking you to do so.

Enter your email address for
Daily Updates:

Weekly Newsletter

Running for over 6 years, the PCMECH weekly newsletter helps you keep tabs on the world of tech. Each issue includes news bits, an article, an exclusive rant as well as a download of the week. This newsletter is subscribed to by over 28,000 readers (many who also subscribe to the other option) - come join the community!

To subscribe to this weekly newsletter simply add your email address to the following field and then follow the confirmation prompts. You will be able to unsubscribe at any time.

Enter your email address for
Free Weekly Newsletter: