Secure, securer, securest
Published: Wednesday 2007-03-28.
Nordea was first, but now attackers are beginning to target other banks. Perhaps the attacks against Nordea aren’t working as well as they did any longer, considering I get at least one phishing attempt a day from “Nordea tekniska serviceavdelning” (sic!), perhaps people are starting to understand that it is not what it purports itself to be. Today I got an e-mail that says it is from Swedbank (the bank with the silly name, that previously was known as Föreningssparbanken), but this time it is not phishing, this time they have attached an exe file that is supposed to “renew your browser” (sic!) into supporting SSL3, something that all interesting web browsers have done for the last decade.
Since I am not a customer of Swedbank, and the e-mail additionally is addressed to an e-mail address I never would use when communicating with a bank, I know it is just a bluff, but if you are not as vigilant you could easily be fooled. Just remember that bank would never send executable files over e-mail in this manner, and definitely not require you to install it before tomorrow!
Speaking of security in banks, by the way, it can sometime be quite irritating. It is not enough that you have to have a “code calculator” or a one-time code card to be able to log in to most banks’ web services, now they are also starting to require access to these codes when paying with a debit or credit card over the Internet. With bank cards in two banks and credit cards in two others, that means that I would need to bring two cards with one-time codes and two code calculators with me to be able to order anything over the Internet. Please, banks, could you fix this in some other way? Why not write a Java applet that I can install on my mobile phone, or a widget for my web browser, or something like that?
The article is older than a fortnight and has been closed for new comments.
Disclaimer: The comments are copyrighted by their respective authors. The web site owner takes no responsibility for the contents of the comments. Improper comments will be deleted.