InformationSecurity inTanzania

This Blog is informational and intended to provide info to my friends, clients,and other Security Guru's out there.It is for all those who wish to improve the state of "Unawareness" of Information Security In Tanzania. Its my Passion that all my country men learn and protect themselves from all kinds of 21"st century Information and Data Theft. Be Prepared. "CHANCE FAVORS THE PREPARED MIND"

Sunday, August 13, 2006

Online Banking

Those banks that have online banking ,may very well be advised to take heed here in Tanzania.


HSBC -Uk is to review its online security after researchers at Cardiff University found a loophole which could allow access to customers' online accounts.

A bank spokesman said the loophole had not been used by fraudsters and was not a viable way for a hacker to steal.

But he added the bank would now "look at different ways of doing things".

Meanwhile, an independent security expert urged HSBC and other banks to tighten security to prevent customer accounts being accessed by fraudsters.

Loophole

The reality is that it would be more profitable for that fraudster to concentrate his or her efforts elsewhere
HSBC spokesman

Q&A: Web banking security

The flaw - exposed by researchers at Cardiff University's school of computer science - centres on the way HSBC customers access their online banking service.

It relies on "keyloggers" - gadgets or software which capture the keystrokes made on a particular computer - which can enable a hacker to work out the information needed to successfully log onto an account within a few attempts.

According to the research, it was possible with the help of a keylogger to access customer accounts in just nine attempts.

"Nine attempts suggests that HSBC's system is not robust enough," Michael Panhallurick, computer forensic manager at the Risk Advisory Group, told BBC News.

In response, a HSBC spokesman told BBC News that loophole exposed by the researchers was "not a viable route for fraudsters".

"It involves a fraudster targeting a single customer over the course of a few days," he said.

"The reality is that it would be more profitable for that fraudster to concentrate his or her efforts elsewhere."


The more layers of security you have in place the more likely you are to deter the fraudsters
Michael Panhallurick, Risk Advisory Group

The spokesman added that online fraud was "a very, very minor part of the fraud that we see, a far bigger problem is people disposing of bank letter and utility bills inappropriately."

Bank statements and utility bills are often used by fraudsters to perpetrate identity fraud.

Experts warn that a cracked bank account could also be used in a wider identity theft scam without necessarily involving large-scale theft direct from the account.

In addition, cracked accounts could be used to assist with money-laundering.

Determined hackers

Mr Panhallurick told BBC News that few online bank accounts were safe from determined hackers.

"Most home computers are vulnerable to dangerous software such as spyware and keyloggers.

"Banks, therefore, need to ensure they have multiple identity and password checks in place.

"After all, the more layers of security you have in place the more likely you are to deter the fraudsters... they will move on elsewhere."

posted by <'RouterAddict'> @ 2:46 AM 0 comments

DarwinsNighmare - The Truth.....

I firmly oppose the misinformation of the World in the movie portrayed by the director of the Darwins nightmare.
Of this am passionate and have no political or other reasons other than the facts being twisted.
I have always said and I quote:' a little knowledge is dangerous ,especially when mixed with a hyperactive imagination'.
Although there may be element s of truth in the movie the whole motive and gist of the movie from the start was malintentioned.

posted by <'RouterAddict'> @ 2:35 AM 0 comments