funsec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: UK: Security Flaw Exposes 3M HSBC Online Accounts

From: Ron <iago () valhallalegends com>
Date: Sat, 12 Aug 2006 04:00:43 -0500
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hey,


http://technology.guardian.co.uk/news/story/0,,1841016,00.html



I read RTFA'ing, and I noticed something important about why this is
being WAY oversold:

[snip]
The flaw, which is not being detailed by the Guardian, revolves around
the way HSBC customers access their web-based banking service.
Criminals using so-called "***keyloggers***" - readily available gadgets
or viruses which record every keystroke made on a target computer - can
easily deduce the data needed to gain unfettered access to accounts in
just a few attempts.
[/snip]


For some reason, I'm not considering this a "glaring security loophole",
but that's just me....
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFE3Zi6fqSf2EkP4p4RAtz1AJ97zczPE3JKYbZ/fiDZSWOU8XP02wCcCoa7
bfZOyG8VJ3zr0Rw5LAOGZFw=
=kWab
-----END PGP SIGNATURE-----
_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.
Previous By Date Next
Previous By Thread Next

Current thread: