UK: Security Flaw Exposes 3M HSBC Online Accounts

["Fergie" <fergdawg () netzero net>]

Via The Guardian (UK).

[snip]

One of Britain's biggest high street banks has left millions of online
bank accounts exposed to potential fraud because of a glaring security
loophole, the Guardian has learned.

The defect in HSBC's online banking system means that 3.1 million UK
customers registered to use the service have been vulnerable to attack
for at least two years. One computing expert called the lapse "scandalous".

The discovery was made by a group of researchers at Cardiff University,
who found that anyone exploiting the flaw was guaranteed to be able to
break into any account within nine attempts.

[snip]

More:
http://technology.guardian.co.uk/news/story/0,,1841016,00.html

- ferg


--
"Fergie", a.k.a. Paul Ferguson
 Engineering Architecture for the Internet
 fergdawg(at)netzero.net
 ferg's tech blog: http://fergdawg.blogspot.com/


_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.