Online Banks Subjected to 200 Hack Attempts Already in 2009

Online Banks Subjected to 200 Hack Attempts Already in 2009

Posted by John B. Frank Thursday, May 14, 2009

Looks like there's a phenomenal surge in hacking attempts to control online bank accounts. It's unfortunate, but HomeATM can eliminate the threat of cloned bank sites, cloned bank cards and phishing attacks all at once. Just have your customer log-in to your site with a PCI 2.0 Secured 3DES DUKPT PED. If they don't have the physical card and don't know the bank issued PIN, they CANNOT log-in.

I've been saying it's time for banks to do this for a while now, but with 200 hacking attempts so far this year time is getting short. It's easy as 1-2-3 and two of them are done.

Bank Issues Bankcard
Bank Issues PIN
Bank Issues Bankcard/PIN Reader and Eliminates username: password.

Banking / Finance News
Source: spamfighter
Complete item: http://www.spamfighter.com/News-12372-Allied-Irish-Bank-Warns-Customers-against-Rising-Phishing-Attacks.htm

Description:

Given the surging attempts by cyber criminals to attack its online customers, Allied Irish Bank (AIB) has warned customers to be very careful while using online services. The Bank said that it had noticed phenomenal rise in phishing attacks in last few days.

Since the beginning of this year till April 2009, 200 hacking attempts had been made by cyber criminals to control people's online bank accounts, according to the reports. In fact, these statistics were equivalent to the overall hacking attempts made throughout 2008.

According to the security experts, cyber criminals send an e-mail pretending to have arrived from the bank to target bank customers. The text of the e-mail asks customers to click on the links to visit the bank's website.

However, it takes customers to a fake website appearing as the legitimate site of the bank and asked them to fill in their bank codes.

Editors Note: They wouldn't need to "fill in their bank codes" if they swiped instead of typed. Would they? And since the card holder data is instantaneously encrypted there's no data to be had. Continue with the way it's done now, SNAFU...and your customer get's had...and so do you. It's going to get worse...it's not going to get better, so what are you waiting for? It's as simple as 1-2-3 and two of the pieces are already in place!

Look for more and more of these to crop up. Oh...and here's an example of a Wells Fargo Cloned site: (click to enlarge...it's harmless...just a jpeg) or go to The Consumerist to read the story: Here's the LINK

0 comments

Learn More About Us

Find out how our patented technology can empower your financial institution.

Our secure two-factor online banking authentication eliminates dangerous passwords and usernames and replicates the same trusted process used to access cash at ATM's. (Insert Bank Issued Card, Enter Bank Issued PIN)

There is an R.O.I. as FI's also earn recurring revenue from each transaction conducted using our PCI 2.0 Certified PIN Entry Device. Our technology also provides a unique real-time P2P "Instant-Transfer" which allows your online banking customer to transfer cash from ANY of their bankcards to ANY other bankcard...with the Swipe of a card.

Help your bank eliminate phishing and your customers avoid identity theft by providing them with the ability to stop typing and start swiping. There is no safer way to conduct financial transactions online than by 3DES DUKPT encrypting the cardholder details, which we do at the mag-head "inside the box/outside the browser."

All Top Banking