Comments on: ING Direct’s Annoying Security Measures

By: Cap

Cap — Fri, 28 Oct 2005 18:20:45 +0000

well maybe 100% is stretching it, you’re right.

I duno about staking my life on it, but I’m fairly certain I’ve secure my system well enough. I’ve used the net for a long long time now, and I have had my fair share of silly trojans to malware.

most of those are because I was being stupid, accessing obvious potential problem source.

still, I hardly spend time browsing around the web/net anymore, and my list of frequently accessed sites are down to a handful.

you’re right on that there’s always new exploits, (using Windows, for example, is just really asking for it) but unless I’m being specifically targetted, I don’t really worry about it much.

By: denon

denon — Fri, 28 Oct 2005 18:02:43 +0000

Cap,
We deal with home and office users all the time, that are 100% sure their computers are “safe”. They figure since they have an AV software, and ran some adware detection util, they’ve caught everything. Very often, we find either undetected malware, or something not yet in AV or spyware definitions. Even on my own workstation, I’m reasonably sure that it’s secured well, and free of malware, but I’d not stake my life on it. There’s always a new exploit, or ways of loading new malicious payloads..

By: Cap

Cap — Fri, 28 Oct 2005 04:07:19 +0000

no way. I hate it with a passion. lol.

you reminded me how much I hated it. I guess its annoying cuz I have to deal with two of ‘em.

By: jim

jim — Fri, 28 Oct 2005 03:55:36 +0000

In the end, if it prevents one case of fraud and helps get us all greater returns (though Emigrant still has a higher return than ING), I can handle it.

By: Cap

Cap — Fri, 28 Oct 2005 03:40:44 +0000

as denon mentioned its also to prevent keylog softwares.

a few other banks are starting this too.

rather annoying for those of us accessing from home, and are 100% positive their computer is safe from funky programs.

I guess for the average joe its a good thing.

By: denon

denon — Thu, 27 Oct 2005 15:08:31 +0000

It’s not just public PCs, it’s also to help protect against a widespread or even a narrowly targeted virus capturing the info, even on a home PC. In our experience, well over 75% of home and poorly managed office PCs have viruses or spyware that would be capable of logging critical information. This certainly isn’t foolproof, because you could always do screen caps and track click parameters and get the information, but it’s much more difficult to process the data on a large scale (from thousands of PCs).

Hopefully we’ll see more measures like this on other banks, or better still, support for a hardware device such as secureID or a biometric reader.

By: jim

jim — Thu, 27 Oct 2005 02:01:20 +0000

That reminds me of the SecureID things that practically all my employers have used. It’s a little widget with a display that cycles through numbers, you need to use those numbers to login to the system remotely.

By: fivecentnickel.com

fivecentnickel.com — Thu, 27 Oct 2005 01:33:56 +0000

If you think this is annoying, just wait for the new security measures to be rolled out at banks across the web.

By: jim

jim — Wed, 26 Oct 2005 19:09:12 +0000

Ahhh, now I understand, I would argue against logging into sensitive accounts from public computers but I also understand that some people don’t have a choice.

By: Dave

Dave — Wed, 26 Oct 2005 18:35:14 +0000

The purpose of the ’silly little keypad’ is to prevent keyboard loggers from getting a hold of your pin number. This is primarily targeted at people who use computers in public locations (library, internet cafe, etc…). It prevents the user from ever having to actaully type their pin.

Certainly it is annoying but it does serve its purpose.