Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


View this topic in a long page with up to 500 replies per page Create new topic
1 | 2 | 3 | 4 | 5
2742 posts

Uber Geek
+1 received by user: 1322

Trusted
Subscriber

  # 1302091 11-May-2015 16:37
Send private message

The thing about internet banking is that provided you don't knowingly disclose your PIN or Password to a third party, and run antivirus, your bank will refund you in the unlikely situation an undetected trojan, or similar, has taken off with some of your funds. So all good.

2742 posts

Uber Geek
+1 received by user: 1322

Trusted
Subscriber

  # 1302093 11-May-2015 16:39
Send private message

frankv:
jarledb: So I use unique and random passwords for every single service I use. 1Password is my software of choice for keeping them all handy.


And what does 1Password do with them? How do you know?

If you add up all the letters in "1Password" you'll find that it adds up to exactly the same as "NSA". 'Nuff said.



I use KeePass (Keepass droid on my android) for discrete encrypted password management that is not provided by a third party.

 
 
 
 


2742 posts

Uber Geek
+1 received by user: 1322

Trusted
Subscriber

  # 1302094 11-May-2015 16:42
Send private message

jarledb: For internet banking I only use services that require an extra token to login. Like a code calculator, SMS message with onetime code etc.




For your own piece of mind, fair call - however, not required. For eg. Kiwibank don't offer extra token facility (as far as I am aware). Therefore, provided you abide by their terms and conditions in using internet banking, your funds are safe.

14823 posts

Uber Geek
+1 received by user: 2008


  # 1302098 11-May-2015 16:46
Send private message

The problem is that banks still send customers emails with links to click, and many people won't be able to tell if they are legitimate emails or not.  Scammers  have got a lot better at faking these emails recently, and I have had to look at the actual email source code to see if they are legit or not.  So as a rule of thumb I now never click on links in emails from banks, even the legit ones.

BDFL - Memuneh
63333 posts

Uber Geek
+1 received by user: 13858

Administrator
Trusted
Geekzone
Lifetime subscriber

  # 1302102 11-May-2015 17:04
2 people support this post
Send private message

1995. That is when I started using Internet Banking.

Keep password safe, do not reuse passwords, try using a bank with a 2FA, do not follow links received via emails.

Most importantly do not give your password over the phone just because someone called and said "It is from your bank". You might ask for a name, hang up and call your bank on a number you know - do not ever call from a number someone gives to you to call back as it could be as fake as the person calling.

Social engineering is where people fall.






2643 posts

Uber Geek
+1 received by user: 187


  # 1302174 11-May-2015 18:32
Send private message

Once again thanks everyone, especially for the information.

I knew about not clicking on links etc, however it is nice to get a refresh and see what others are saying :)

2748 posts

Uber Geek
+1 received by user: 1326

Lifetime subscriber

  # 1302180 11-May-2015 18:41
2 people support this post
Send private message

One last thing...

You need to post your account number and password here, so that we can all help you keep it secret.


19282 posts

Uber Geek
+1 received by user: 2600
Inactive user


# 1302182 11-May-2015 18:42
Send private message

frankv: One last thing...

You need to post your account number and password here, so that we can all help you keep it secret.



Just email me your Kwibank user name / password and secret answers and I will help you out

;)

22063 posts

Uber Geek
+1 received by user: 4683

Trusted
Subscriber

  # 1302183 11-May-2015 18:43
Send private message

Also your date of birth and mothers maiden name because those are supposed to be secret. I mean to identify you....




Richard rich.ms

BDFL - Memuneh
63333 posts

Uber Geek
+1 received by user: 13858

Administrator
Trusted
Geekzone
Lifetime subscriber

  # 1302198 11-May-2015 19:05
Send private message

If you are really paranoid you would create fake answers to "secret questions". For example some "Bad Person" can easily find out someone's mother's name or date of birth on Facebook.

Or if someone has access to email (not impossible seeing some people reuse passwords and there are breaches every day in lots of services) then it's trivial to get a password reset link to a service such as Amazon for example. And then looking at the Amazon account page you could find said person's credti card's last four digits. And then use this information to reset another service that only asks for an email or for partial credit card information - and so on.

It's not impossible for this to happen, from a single leaked password.






2742 posts

Uber Geek
+1 received by user: 1322

Trusted
Subscriber

  # 1302211 11-May-2015 19:23
Send private message

mattwnz: The problem is that banks still send customers emails with links to click, and many people won't be able to tell if they are legitimate emails or not.  Scammers  have got a lot better at faking these emails recently, and I have had to look at the actual email source code to see if they are legit or not.  So as a rule of thumb I now never click on links in emails from banks, even the legit ones.


No they don't. Banks do not send emails to customers with links to internet banking logon. Never.

2534 posts

Uber Geek
+1 received by user: 943

Subscriber

  # 1302212 11-May-2015 19:28
Send private message

mattwnz: The problem is that banks still send customers emails with links to click, and many people won't be able to tell if they are legitimate emails or not.  Scammers  have got a lot better at faking these emails recently, and I have had to look at the actual email source code to see if they are legit or not.  So as a rule of thumb I now never click on links in emails from banks, even the legit ones.


No legitimate bank I've dealt with (which is most of the ones in NZ and Aus, in some form or another) has ever sent me an email with a link to follow.

1245 posts

Uber Geek
+1 received by user: 137


  # 1302220 11-May-2015 19:41
Send private message

I feel this is like the whole PayPass/Paywave discussion.

If you feel it is unsafe (unwarranted) then don't use it. Not intending to offend, but asking a forum of strangers like this one is just poor excuse and darn lazy. If it was truly important, then one would look up security principals such two factor authentication, encryption mechanisms, phishing and decide and if the level of risk is acceptable for the convenience of not having to physically manage your finances at a branch.

My folks often insist on hearing from others (and non family members seem to have a higher weighting) before making decisions. If it has financial implications, wouldn't it make sense to validate it yourself rather than using strangers as a litmus test?

Having said that, all the responses I have seen so far are valid and have merit but I also seriously hope that OP has also done more homework rather than just relying from one source like this.

3279 posts

Uber Geek
+1 received by user: 980

Trusted

  # 1302233 11-May-2015 19:56
Send private message

Inphinity:
No legitimate bank I've dealt with (which is most of the ones in NZ and Aus, in some form or another) has ever sent me an email with a link to follow.


I couldn't recall any bank doing this either, but upon searching in gmail I find 2 from ANZ with links to follow in them, and they certainly aren't phishing emails.  They are not links to login to internet banking or anything like that - they're links to "manage your communication preferences" and "more security options" and unsubscribe... but it does set a slightly dangerous precedent as they do go some of the way to undermining the other big security warning in the email that says:


"Never follow a hyperlink when you log on to ANZ Internet Banking, or any web page where financial transactions can be made. Always type the full address into the address bar"


The other thing that undermines this somewhat with anz is the fact that their front page of anz.co.nz isn't https so the big "log on to internet banking" button on there could take you anywhere if you've been MITM'd... 

I think sometimes it pays to be a little paranoid - yes frequently people have only themselves to blame when their internet banking details get "owned" but the banks don't always get it right either...



4301 posts

Uber Geek
+1 received by user: 849

Trusted
Subscriber

  # 1302246 11-May-2015 20:15
Send private message

Inphinity:
mattwnz: The problem is that banks still send customers emails with links to click, and many people won't be able to tell if they are legitimate emails or not.  Scammers  have got a lot better at faking these emails recently, and I have had to look at the actual email source code to see if they are legit or not.  So as a rule of thumb I now never click on links in emails from banks, even the legit ones.


No legitimate bank I've dealt with (which is most of the ones in NZ and Aus, in some form or another) has ever sent me an email with a link to follow.


When I get notices from Rabobank about changes to interest rates, terms & conditions, etc. they always have a link to their main web site which, in turn, has a direct link to log into Internet banking. Admittedly these emails don't encourage or prompt the user to log in, but they could still fool someone of they were spoofed.

1 | 2 | 3 | 4 | 5
View this topic in a long page with up to 500 replies per page Create new topic



Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Video game market in New Zealand passes half billion dollar mark
Posted 24-May-2019 16:15


WLG-X festival to celebrate creativity and innovation
Posted 22-May-2019 17:53


HPE to acquire supercomputing leader Cray
Posted 20-May-2019 11:07


Techweek starting around NZ today
Posted 20-May-2019 09:52


Porirua City Council first to adopt new council software solution Datascape
Posted 15-May-2019 12:00


New survey provides insight into schools' technology challenges and plans
Posted 15-May-2019 09:30


Apple Music now available on Alexa devices in Australia and New Zealand
Posted 15-May-2019 09:11


Make a stand against cyberbullying this Pink Shirt Day
Posted 14-May-2019 20:23


Samsung first TV manufacturer to launch the Apple TV App and Airplay 2
Posted 14-May-2019 20:11


Vodafone New Zealand sold
Posted 14-May-2019 07:25


Kordia boosts cloud performance with locally-hosted Microsoft Azure ExpressRoute
Posted 8-May-2019 10:25


Microsoft Azure ExpressRoute in New Zealand opens up faster, more secure internet for Kiwi businesses
Posted 8-May-2019 09:39


Vocus Communications to deliver Microsoft Azure Cloud Solutions through Azure ExpressRoute
Posted 8-May-2019 09:25


Independent NZ feature film #statusPending to premiere during WLG-X
Posted 6-May-2019 22:13


The ultimate dog photoshoot with Nokia 9 PureView #ForgottenDogsofInstagram
Posted 6-May-2019 09:41



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.