PIN Security finally catching up?
Wired reports that a Citibank hack may be responsible for a recent ATM crime spree. Edit: Looks like some arrests have been made! I've discussed issues around hacking ATMs and challenges with skimming in the past, but this one appeared to be pretty lucrative. While bank networks are not impenetrable, attacking endpoints is becoming much easier and more lucrative.
Anyone remember the old days when you had to make sure the ATM you were going to use was real? Speaking of that... Ladies, you should beware of this.
Something of interest to me... As a consumer, do you check your bank statement with all of your receipts? Would you know if money started disappearing from your account in $10-$30 increments? Does the state of your personal financial situation dictate your attention to your bank account? I may be a dying breed, but I have been known to spend twenty minutes poring over a bank statement to figure out where I missed a dime.
Comments
Here's some Snopes detail on the same phenom. I'm Googling for a picture I once saw of a pair of very small, beige boxes that read the card and watch your PIN entry. Frighteningly well camouflaged.
It is the same problem I had previously posted on this very blog about, but in the often less considered context: Authentication of the service provider. Are they REALLY the bank they seem to be? (Or more correctly, is my transaction ONLY between me and the bank, or is a third party in-line?)
Posted by: Jeff Pettorino | June 25, 2008 11:51 AM
Maybe it's because I'm paranoid, maybe because I am a geek at heart, but I check my statements religiously every month. I would notice a small transaction like that.
Posted by: Rob | June 25, 2008 11:55 AM