A ran across a rather alarming article today which I “borrowed” the name of this post from: “Most Bank Sites Are Insecure“. From the article:
The vulnerabilities identified by the authors aren’t fixable with a simple patch. Rather, they are issues like login boxes, information submission forms, security information, and contact information placed on insecure pages; redirections outside the bank’s domain without warning; allowing insecure user IDs and passwords; and e-mailing sensitive information insecurely.
Granted, the study this article is based on was conducted in 2006 and the author mentions some of the vulnerabilities have been addressed since then. Regardless, what it really boils down to is how careful you are when you are on a public network:
[H]e advises not panicking because exploiting the vulnerabilities that he and his students found is not easy. In general, he said these flaws become an issue on potentially insecure networks, such as a wireless network not under your control or on a hotel’s network.
If you take nothing else from this, just be wary of where you go when you are on a public network, such as in an airport or coffee shop. You never know who is sitting behind you…
Jason Faulkner is the man who brings you our daily tips. He is based in Atlanta, Georgia.
This is just to say that there is no such thing as bullet proof security measure, all you can do is to minimize the Risk. Now it is certainly a big problem when you have in mind that bank security is at risk and potentially put you money at risk.