Log in to a bank account from a public network - Information Technology - IT - HWzone Forums
adplus-dvertising
Skip to content
  • Create an account
  • About Us

    Hello Guest!

     
    Please note - in order to participate in our community, comment and open new discussions, you must join as a registered member.

    Our members enjoy many advantages, including the ability to participate in discussions, enjoy raffles and promotions for members of the site, and receive our weekly content directly by email.

    Do not like being harassed by email? You can register for the site but do not submit your registration to the weekly email updates.

Login to a bank account from a public network


ilanb0
 Share

Recommended Posts

It is known that in a public network (hotel, cafe, etc.) there are hackers who can dress up the user's passwords and log in with him / separately to his personal accounts (such as a bank account). Is the fact that I use the layer Another login to the bank account (sent to my cellphone, 6-digit code in SMS) means that it is not possible to penetrate my account? After all, the hacker sees my account access codes with his software, but can I see that when I enter the SMS code?

Also, is using a fingerprint to sign in to an account something that can prevent someone from accessing my account from a public network?

Link to content
Share on other sites

Quote of ilanb0

It is known that a public chain (hotel, cafe, etc.) has Who can dress up on the user's passwords and log in with him / her separately to his personal accounts (such as a bank account).

What is "known"? Who is it known to? Dressing up for a password sent in a secure TLS is really not trivial, even if the communication over the WIFI itself is not secure at all. That's why they invented all the SECURE TUNNELS. I do not know today any normal site that sends passwords in PLAINTEXT. Even 99% of forums do so securely. Certainly not banks.

Link to content
Share on other sites

Obviously it is known. That's what it's basic. 😉

Just to take advantage of this fact you must successfully do dozens of things and even there the success rate is not high, but you will explain it to a frightened audience who hears "cyber" all day ....

 

@ilanb0 If you want advice, then you got advice. MFA enhances security in your access to sensitive locations.

Link to content
Share on other sites

Quote of multicore

Obviously it is known. That's what it's basic. 😉

Just to take advantage of this fact you must successfully do dozens of things and even there the success rate is not high, but you will explain it to a frightened audience who hears "cyber" all day ....

 

@ilanb0 If you want advice, then you got advice. MFA enhances security in your access to sensitive locations.

What you write does not sit well with all kinds of articles that have been broadcast in the past in the news For the unbearable ease Of the ability to hack people into personal information while operating on a public network. The most essential thing (and the only one actually) is the fear of intrusion into my bank accounts, although even in such a case, withdrawing funds from the account is the main damage but also it is in a kind of control by the bank.

Link to content
Share on other sites

Quote of QttP

What is "known"? Who is it known to? Dressing up for a password sent in a secure TLS is really not trivial, even if the communication over the WIFI itself is not secure at all. That's why they invented all the SECURE TUNNELS. I do not know today any normal site that sends passwords in PLAINTEXT. Even 99% of forums do so securely. Certainly not banks.

Sorry for the ignorance - what is a secure TLS?

Link to content
Share on other sites

Assuming your bank app / website uses https to talk to the server - the attacker cannot see your password (unless it's a huge resource breaker like NSA or something like that then I have no idea).

What a reasonable attacker (someone with some understanding) can do is redirect your browsing, make you think you are browsing your bank website (even if the address is correct) and actually set up a fake website that will make you phishing for a password to enter there. In that case a password you get in sms will not help you because you will just hand it over to an attacker. A password in the mfa app is much more secure because the intruder does not have access to it.

If you ask me, do not give out any password when you are connected to a public network. Certainly not of a bank account where the damage can be heavy if the password is stolen

Link to content
Share on other sites

If the address is correct, no, he can not. He may be able to use UNICODE to forge an indistinguishable address from the correct address in the eye, but if I'm not mistaken the browser blocks it. Anyway if you type the address yourself everything is fine.

Anyway of course I strengthen the hands of @multicore- MFA always.

Edited By af db creid
Link to content
Share on other sites

Join the discussion

You can then join the discussion and then join our community. If you already have an account with us, please Log in now To comment under your username.
Note that: The comment will appear to the surfers after approval by the board management team.

guest
Add a comment

×   The content pasted is with formatting.   Remove formatting

  Only 75 emoji are allowed.

×   Your link has been automatically assimilated.   Show as regular link

×   Your previous content has been automatically restored.   Clear all

×   You can not paste images directly. Upload or insert images from URL.

 Share


  • Latest news

  • Buzz-Zone: Everything hot on the net

  • Popular now

×
  • Create new ...

At the top of the news:

new on the site