EU Agency tells banks to assume all PCs are infected
Posted: Thu Jul 12, 2012 3:53 pm
The Gun Counter
https://www.theguncounter.com/forum/
EU Agency tells banks to assume all PCs are infected
https://www.theguncounter.com/forum/viewtopic.php?f=14&t=19257
Page 1 of 1
Re: EU Agency tells banks to assume all PCs are infected
Posted: Thu Jul 12, 2012 8:38 pm
Realistically, they probably are... I would bet at least 80% of the ones on the internet have SOMETHING on them malicious.
Re: EU Agency tells banks to assume all PCs are infected
Posted: Thu Jul 12, 2012 10:47 pm
Well yeah, isn't that the current proportion that have ms windows on them?mekender wrote:Realistically, they probably are... I would bet at least 80% of the ones on the internet have SOMETHING on them malicious.
Re: EU Agency tells banks to assume all PCs are infected
Posted: Thu Jul 12, 2012 11:17 pm
<sarcasm> yeah, because Mac and Linux boxes never get malware</sarcasm>
Re: EU Agency tells banks to assume all PCs are infected
Posted: Fri Jul 13, 2012 2:03 am
I use my VMS workstation for online banking 
Re: EU Agency tells banks to assume all PCs are infected
Posted: Fri Jul 13, 2012 2:52 am
On that note, how secure is the browser encryption that kicks in when you log in to your bank's website? Though I know nothing about information security, I'm afraid the answer is "not very".CByrneIV wrote:I've been telling my clients the same thing for years.
As of now, I fully and firmly believe that the only possible future model for information security is untrusted client, untrusted network, untrusted transport, with securely authenticated access.
Re: EU Agency tells banks to assume all PCs are infected
Posted: Fri Jul 13, 2012 12:12 pm
But then again the reality is that you are still much more likely to have someone steal your wallet or your receipts from your trash than you are to have them intercept a transaction like that.CByrneIV wrote:The encryption itself, IF PROPERLY IMPLEMENTED AND MANAGED (particularly if properly patched when vulnerabilities are found) is actually pretty secure.Frankingun wrote:
On that note, how secure is the browser encryption that kicks in when you log in to your bank's website? Though I know nothing about information security, I'm afraid the answer is "not very".
IF properly implemented and managed.
At BOTH ends, and the middle.
The problem is, there are so many other vulnerabilities, that it makes the strength of the encryption irrelevant. It's far easier to just compromise the session or the data, in one of a hundred other ways.
Re: EU Agency tells banks to assume all PCs are infected
Posted: Fri Jul 13, 2012 8:28 pm
You computer has a key logger, you are on film, recorded with sound, and all your emails are public - unless proven otherwise...
Sound about right?
Sound about right?