ING Direct’s New Security Feature
I’ve wrongfully lambasted ING Direct in the past about that stupid keypad number to letter translator (I’ve since mended my ways, I’ve learned it’s to combat keyboard capture mechanisms and so I give it a thumbs up) but this time their security feature is a definite boost.
Here’s what I was greeted with when I logged in today:
A new security feature is on the horizon.
We are excited to introduce the latest breakthrough in internet security.
- Every Customer will select an image and create a phrase.
- We will display your image and phrase every time you login.
- The result is peace of mind that you are on the authentic https://secure.ingdirect.com website.
Look for an email in the coming days with details about this exciting new security feature!
I don’t know if I’d classify this as a breakthrough but it’s a definite improvement in security. By having a phrase and a unique picture stored only on their system, it will be much harder for phishers to trick you into entering your information. What this will mean is that you’ll have two screens to go through, one to enter your account number and then one to enter in your pin. Are two screens worth it? Definitely.
Starting soon, you will be asked to select an image and create a phrase when logging into your account. Images can be chosen from our library of images and the phrase you enter can be any words you choose, such as “Home Run” or “Dream Car.”
The enrollment process is easy and will take a minute or two. And you will only have to do this once. After enrollment, when you login, your image and phrase will be displayed so you’ll know immediately that it’s safe to enter your Login PIN. To make your login experience even easier, you can “register” your computer with us, so that the next time you login from that computer, we will recognize you.
Print Article
Email Article
Stumble It!
Bookmark
reddit.com
Tags:
| Related Posts |
Did you like this article? If so, you can get all the latest articles delivered to your email inbox for free each morning by entering your email address in the box below. Your email will only be used to deliver this once-daily subscription and you can unsubscribe at any time.
There are 7 comments, add your thoughts now!
I think Bank of America is doing this too and I think it’s a neat idea - although I think a lot of fraud thwarted by this could also be thwarted by people being a little smarter about what they click on. I worry though that the images could be cached somewhere on your computer and eventually somebody will figure out how to access them and display them on a phishing site.
Yea, boa does use this. I have had an account with them for several months because of a signup bonus and I think they added it shortly after I signed up. At first I thought it was kinda annoying but the more I think about it it is a good idea.
[...] ING Direct is increasing security. [...]
ING has been pretty aggressive about security…a plus. I wish all financial institutions took security as seriously.
Yeah…they’re just copying BoA…but…it IS a good idea.
Darrin
hmm .. what’s to stop a phishing site from suckering people into getting their basic info, then displaying the image? Is the image going to show up immediately based on a local cookie?
Either way, it seems like they could ask for basic creds, do a remote http pull from ING, get your image, and make you feel all warm and fuzzy, followed by a large ACH to Abudabi.
It’s essentially a reverse-password.
You enter a password to prove you are who you are. They provide a password to prove you are on the right site, and not a phisher’s site.
It’s an old spy movie cliche. Simple, yet effective.
Previous Article: « Frugal Lawn and Mowing Tips
Next Article: Shortened Week’s Roundup »