Next-gen banking security still not safe
Two-factor authentication, where banks add one-time passwords and payment confirmation codes to the usual password-based security measures, could still be overcome by phishing scams, a security vendor at Infosec 2006 has warned.
F-Secure said that advanced phishing techniques could be used to breach the system by setting up a fake banking site, contacting the real site and waiting for the password, then getting the user to type in the one-time password that is supposed to protect them.
[ Read more ]
Reading our newsletter every Monday will keep you up-to-date with security news.
Receive a daily digest of the latest security news.