Posted by Monsolo in Security | 1 Comment
Does your bank mask your account number?
Marghil and Yuga have revealed a security risk in Xoom. All you need is someone’s email address, zip code, and bank account number.
Yuga mentioned that it is unlikely that a person publishes his or her account number online. But does your bank print the account number on bank statements? Or does it display it when you do your online banking? If you do your internet banking in an internet cafe, do you clean up your tracks?
Consider this: most hacking incidents do not really require technical skills. Common social engineering techniques include dumpster diving (i.e., going through the waste basket) or shoulder surfing. If your bank prints your account number on your statement, the hacker already has two pieces of the puzzle. All he needs is the email account—and how many of us use our names as our email address?
So does your bank mask the account number? If not, you should strongly advise your bank to do so.
Related posts:
- Phishers targeting local bank clients
- Internet cafe security
- Kaya Money for SMEs
- Flock & WordPress.com teams up; offers free WP account.
- Social Engineering
Trackbacks/Pingbacks
- Techno Pinoy » Blog Archive » Plagiarism - [...] I was surprised to find my Pinoytechblog post at Gavilan WeBlog. While they say that it is the highest ...
- Techno Pinoy » Blog Archive » Plagiarism chapter 2: Wordpress responds - [...] I sent the following mail to Wordpress support: I would like to advise you that gavilan1010 [URL link removed] ...
- Does Your Bank Mask Your Account Number? « Gavilan’s WeBlog - [...] So does your bank mask the account number? If not, you should strongly advise your bank to do so. ...
- Xoom accounts - easy target for hackers?? Not anymore! » Kukote in a Jar Beta - [...] As some of you know, that post got yugateched, j spotted, technopinoyed, pinoytechblogged and gavilaned. I checked their recovery ...
- Pierres Service » Blog Archive » does your bank mask your account number? - [...] a couple of bloggers have revealed a security loophole in xoom, which begs the question: does your bank mask ...
there is actually a “better” loophole with the services the xoom is offering, tho i dnt want to post it and someone might find it interesting and actually do it..
and its imitation, not plagiarism (which is the unauthorized use of the language and thoughts of another author and representing them as one’s own original work), the highest point of flattery..