> In a secure environment like banking users should be warned about this
> warnings while using the internet.

This is a *VERY* good point that I would like to stress. While I'm sure
many other banks are cringing at this (while their fraud departments are
posting job openings), there's not much we can do now aside from encouraging
people who know better to be vigilant. This is especially true due to the
nature of this MIM attack: it is a weakness on the CLIENT side not the
SERVER side. Please, please, please, when doing online banking, be sure to
check this. This service will be no easier nor more difficult to exploit
than, say, your Yahoo! mail account, but the potential damage to you
personally (if nobody else!) is much greater.

As a note: I speak on behalf of only myself, not my company, with this
statement.

Mike Cloppert
Systems Analyst
Fifth Third Bank
513 534 0898
michael.cloppert53.com

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]