funsec mailing list archives
RE: Nordea Sweden shuts Internet banking due to targetedphishing
From: Drsolly <drsollyp () drsolly com>
Date: Wed, 5 Oct 2005 14:59:08 +0100 (BST)
On Wed, 5 Oct 2005, Larry Seltzer wrote:
That WON'T WORK because it relies on TRAINING USERS, which CANNOT BE DONE.I agree with you completely on this point, but doesn't your two-factor authentication idea suffer from the same problem to some extent? It only works if the user notices that the phishing site doesn't ask for the code.
If the user doesn't notice, then what happens? The phishing site didn't ask for the code, and so he can't log in. If the phishing site does fake a log in for the user, then the phisher still doesn't have anything that lets him log into the real (bank) site. _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Current thread:
- Nordea Sweden shuts Internet banking due to targeted phishing Fergie (Paul Ferguson) (Oct 04)
- Re: Nordea Sweden shuts Internet banking due to targeted phishing Florian Weimer (Oct 04)
- Re: Nordea Sweden shuts Internet banking due to targeted phishing Dan Kaminsky (Oct 04)
- Re: Nordea Sweden shuts Internet banking due to targeted phishing Drsolly (Oct 04)
- Re: Nordea Sweden shuts Internet banking due to targeted phishing Blue Boar (Oct 04)
- Re: Nordea Sweden shuts Internet banking due to targeted phishing Justin Mason (Oct 04)
- RE: Nordea Sweden shuts Internet banking due to targetedphishing Larry Seltzer (Oct 04)
- Re: Nordea Sweden shuts Internet banking due to targeted phishing Blue Boar (Oct 04)
- Re: Nordea Sweden shuts Internet banking due to targeted phishing Drsolly (Oct 05)
- RE: Nordea Sweden shuts Internet banking due to targetedphishing Larry Seltzer (Oct 05)
- RE: Nordea Sweden shuts Internet banking due to targetedphishing Drsolly (Oct 05)
- Re: Nordea Sweden shuts Internet banking due to targetedphishing Valdis . Kletnieks (Oct 05)
- Re: Nordea Sweden shuts Internet banking due to targeted phishing Dan Kaminsky (Oct 04)
- Re: Nordea Sweden shuts Internet banking due to targeted phishing Craig Webster (Oct 05)
- Re: Nordea Sweden shuts Internet banking due to targeted phishing Drsolly (Oct 05)
- Re: Nordea Sweden shuts Internet banking due to targeted phishing Craig Webster (Oct 05)
- Re: Nordea Sweden shuts Internet banking due to targeted phishing Drsolly (Oct 05)
- Re: Nordea Sweden shuts Internet banking due to targeted phishing Craig Webster (Oct 05)
- Re: Nordea Sweden shuts Internet banking due to targeted phishing Drsolly (Oct 05)
- Re: Nordea Sweden shuts Internet banking due to targeted phishing Valdis . Kletnieks (Oct 05)
- Re: Nordea Sweden shuts Internet banking due to targeted phishing Craig Webster (Oct 05)
- Re: Nordea Sweden shuts Internet banking due to targeted phishing Florian Weimer (Oct 04)
- Re: Nordea Sweden shuts Internet banking due to targeted phishing Valdis . Kletnieks (Oct 05)