Originally posted by Pogle
View Post
- Visitors can check out the Forum FAQ by clicking this link. You have to register before you can post: click the REGISTER link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below. View our Forum Privacy Policy.
- Want to receive the latest contracting news and advice straight to your inbox? Sign up to the ContractorUK newsletter here. Every sign up will also be entered into a draw to WIN £100 Amazon vouchers!
Reply to: Someone tried to steal all my money
Collapse
You are not logged in or you do not have permission to access this page. This could be due to one of several reasons:
- You are not logged in. If you are already registered, fill in the form below to log in, or follow the "Sign Up" link to register a new account.
- You may not have sufficient privileges to access this page. Are you trying to edit someone else's post, access administrative features or some other privileged system?
- If you are trying to post, the administrator may have disabled your account, or it may be awaiting activation.
Logging in...
Previously on "Someone tried to steal all my money"
Collapse
-
-
Originally posted by EternalOptimist View PostI set up a 'shadow' account that I use for the interweb. I put about a hundred quid on it, and keep it topped up, keep the card pinned to my pc so I dont have to find it when I'm pissed
Leave a comment:
-
Originally posted by expat View PostRemember that the OP here was about someone else attempting to make an online purchase, not do online banking. And the point is that Verified by Visa is not secure.
A keypad won't help. A random code generetor keyfob won't help. Antivirus, antispyware, shifting key entry pads on online banking, won't help. It won't help even if you never do any online banking or online purchases. Someone else can, if they have:
card number
card name
expiry date
security code
your date of birth.
All but the last are available to anyone who has ever had your card in their hands.
Leave a comment:
-
Remember that the OP here was about someone else attempting to make an online purchase, not do online banking. And the point is that Verified by Visa is not secure.
A keypad won't help. A random code generetor keyfob won't help. Antivirus, antispyware, shifting key entry pads on online banking, won't help. It won't help even if you never do any online banking or online purchases. Someone else can, if they have:
card number
card name
expiry date
security code
your date of birth.
All but the last are available to anyone who has ever had your card in their hands.
Leave a comment:
-
Originally posted by jmo21 View PostWhen I lived in Ireland, I had 2 accounts, Bank of Ireland and Rabodirect.
BOI changed their login screen to choose digits via drop downs - everyone complained, so they changed it back.
Rabo on the other hand issue you with a small number generator device, as part of the login process they give you a number which you type into the device and it gives you a number back that you then enter into the website.
They also cancelled my card last year when I was in Crete - without telling me, as I was out of the country, I let them know now if I'll be going away.
I also had it cancelled a month ago as there had been some suspicious activity on my card. I had not seen any money go from my account, but It sounded like someone had tried to get money from it.
I'm quite happy to put up with a little annoyance if It makes it harder for crims to get at my money
Leave a comment:
-
When I lived in Ireland, I had 2 accounts, Bank of Ireland and Rabodirect.
BOI changed their login screen to choose digits via drop downs - everyone complained, so they changed it back.
Rabo on the other hand issue you with a small number generator device, as part of the login process they give you a number which you type into the device and it gives you a number back that you then enter into the website.
Leave a comment:
-
ING Direct have a number keypad which you have to click on, and the position of the numbers changes each time. That's the best method I'ver seen.
Leave a comment:
-
Originally posted by d000hg View PostLuckily, my card got blocked because the bank's system auto-flagged the transaction as suspicious. Would have been nice if they'd phoned me instead of blocking my card though... I sometimes don't use this card for weeks at a time.
I complained and said they could have left me high and dry if I was paying for an expensive meal at midnight, they said that I should contact them before I go on holiday, I said 'what would happen if I my card got stolen when on holiday, then you would just keep it switched on' 'Eh eh, yes, I suppose'. Idiots.
I don't know why people cannot do the Lloyds system where after the password they ask you for 3 chars of your 'special word' which has to be put in by dropdown boxes, that would kill off key loggers for a while.
Leave a comment:
-
Originally posted by expat View PostAll this talk of viruses and keyloggers is missing the point about how easy it is. Nobody stole your password, somebody changed your password. That's what you do when you have "forgotten" the old password. All you need is the details that are printed on the card, plus the cardholder's date of birth. Then Verified by Visa will allow the person attempting to make the purchase to select a new password on the spot.
One of the most important things you need to keep to yourself while on the web is your date of birth. Which is why I always lop a few years off when sites ask me for it (for security purposes only, you understand...Last edited by cojak; 2 May 2009, 16:30.
Leave a comment:
-
Originally posted by NickFitz View PostThis definitely sounds like you've ended up with a keylogger on your system. If that is the case, the only safe course of action is a clean install, then a deep search for anything such as nasties that have been implanted in your BIOS or other obscure places.
I'm aware that some malicious software can do screen grabs. But surely a suitably designed procedural authentication along those lines could be designed to leave the screen unchanged, assuming users could be expected to enable Javascript.
If something has got onto your system that can do keylogging and upload its findings, it's comparatively trivial for it to download a dodgy BIOS update and put it in place for the next time you reboot and every reboot thereafter, including after the re-install of the OS. No re-install of Windows/OS X/Linux will cure that, hence the need for a deep search. I believe the tools suggested earlier in this thread should take care of this, but you ought to check that they promise such protection to be sure.
Leave a comment:
-
All this talk of viruses and keyloggers is missing the point about how easy it is. Nobody stole your password, somebody changed your password. That's what you do when you have "forgotten" the old password. All you need is the details that are printed on the card, plus the cardholder's date of birth. Then Verified by Visa will allow the person attempting to make the purchase to select a new password on the spot.Last edited by expat; 2 May 2009, 10:27.
Leave a comment:
-
All these anti-spyware apps have free/premium editions. I have no problem shelling out a whole $30(!) for something decent, but is there much to be gained over the free versions?
If any problems remain, I'd be half-tempted to just buy a new PC, I'm almost due one anyway and since I work from home it's a relatively small outlay. I could ram it full of security software before copying any files on from current PC. I'm never 100% confident that any software can properly clean a 'dirty' PC any more than you can take a 5-year old Windows installation and get it working as fast as it did when new.
Leave a comment:
-
More on "Verified by Visa" from The Register - DO read on to page 2, for that is where the meat is. However, the salient point is clear on the first page of the story:
Both VbyV and SecureCode are based on 3DSecure, a name that hints at the introduction of some kind of three-factor authentication scheme. But unlike robust authentication techniques, hackers don't have a hardware token generating one-time passwords to worry about - it's just more of the same. And since card details + CVV number is no longer considered as secure enough then it's hard to see how card details + CVV number + VbyV login is any more robust.
Leave a comment:
-
This definitely sounds like you've ended up with a keylogger on your system. If that is the case, the only safe course of action is a clean install, then a deep search for anything such as nasties that have been implanted in your BIOS or other obscure places.
If something has got onto your system that can do keylogging and upload its findings, it's comparatively trivial for it to download a dodgy BIOS update and put it in place for the next time you reboot and every reboot thereafter, including after the re-install of the OS. No re-install of Windows/OS X/Linux will cure that, hence the need for a deep search. I believe the tools suggested earlier in this thread should take care of this, but you ought to check that they promise such protection to be sure.
Leave a comment:
- Home
- News & Features
- First Timers
- IR35 / S660 / BN66
- Employee Benefit Trusts
- Agency Workers Regulations
- MSC Legislation
- Limited Companies
- Dividends
- Umbrella Company
- VAT / Flat Rate VAT
- Job News & Guides
- Money News & Guides
- Guide to Contracts
- Successful Contracting
- Contracting Overseas
- Contractor Calculators
- MVL
- Contractor Expenses
Advertisers
Contractor Services
CUK News
- Streamline Your Retirement with iSIPP: A Solution for Contractor Pensions Sep 1 09:13
- Making the most of pension lump sums: overview for contractors Sep 1 08:36
- Umbrella company tribunal cases are opening up; are your wages subject to unlawful deductions, too? Aug 31 08:38
- Contractors, relabelling 'labour' as 'services' to appear 'fully contracted out' won't dupe IR35 inspectors Aug 31 08:30
- How often does HMRC check tax returns? Aug 30 08:27
- Work-life balance as an IT contractor: 5 top tips from a tech recruiter Aug 30 08:20
- Autumn Statement 2023 tipped to prioritise mental health, in a boost for UK workplaces Aug 29 08:33
- Final reminder for contractors to respond to the umbrella consultation (closing today) Aug 29 08:09
- Top 5 most in demand cyber security contract roles Aug 25 08:38
- Changes to the right to request flexible working are incoming, but how will contractors be affected? Aug 24 08:25
Leave a comment: