Re: can't get to the hackers? sue the banks instead.

[The Security Community <thesecuritycommunity () gmail com>]

Didn't the press used to call it "credit card fraud" before "teh
Internets" came along?  Calling it "identity theft" seems to shift the
focus to the victim instead of the merchants and banks, where it
belongs.

In fact, as I recall "bank phishing" exploded at the same time
CitiBank started those cutesy ID theft commercials (like
http://www.youtube.com/watch?v=KERwnA8VfFM), which was roughly
mid-2004.  It was the perfect opportunity at the time.  That ad
campaign set people up to expect "warnings" and "alerts" from their
banks and they fell for it en masse.

It was a small step from phishing to pharming and the whole criminal
credit card fraud industry exploded after that.

Why not sue the bastards?

On Sun, Aug 23, 2009 at 10:16 AM, Ali, Saqib<docbook.xml () gmail com> wrote:
> http://www.nytimes.com/2009/08/20/technology/20hacker.html
>
> “This lawsuit is intended to provide all those being victimized by
> this massive criminal enterprise the opportunity to come together to
> gather the data we need to fix the problem at a systems level,” Mr.
> Praed said.
>
> Banks, however, may well fight the subpoenas of Mr. Praed.
>
> A number of laws protect the confidentiality of bank customers.
> Moreover, the banking industry has historically avoided much
> discussion about fraud cases. Banks argue they do not want to give
> away the techniques used by criminals or those meant to thwart them.
> They also want to preserve the confidence of their customers.
>
>
> saqib
> http://kawphi.blogspot.com
>
> _______________________________________________
> Fun and Misc security discussion for OT posts.
> https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
> Note: funsec is a public and open mailing list.

_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.