Don't use public Wi-Fi for online banking

r00igev@@r

Expert Member
Joined
Dec 14, 2009
Messages
4,481
So everyone of these banks are admitting that there security is cr@p? Their app is worthless and their 2FA is rubbish? That is what they are admitting?
So how is a MITM attack not equally as possible on any corporate network or ISP or any VPN?
 

access

Honorary Master
Joined
Mar 17, 2009
Messages
10,777
hey banks.

take note of the gap in the market... vpn into your banks online platform for added online banking security...
 

genetic

Honorary Master
Joined
Apr 26, 2008
Messages
32,045
So everyone of these banks are admitting that there security is cr@p? Their app is worthless and their 2FA is rubbish? That is what they are admitting?
So how is a MITM attack not equally as possible on any corporate network or ISP or any VPN?
How the F do you get to that conclusion?? Point out where they said their security is crap.

They only stated that public WiFi poses security risks, which everyone knows. Any decent bank would advise those to be cautious when using any public WiFi.

FNB
The bank told MyBroadband that its online portals are securely encrypted in line with industry standards, which means that all data sent between customers and the bank cannot be intercepted.
ABSA
At Absa, we build our systems in line with the highest local and global security standards and apply very strict protocols on both our app and online services to ensure the safety of our customers,” Janse van Rensburg said.
Nedbank
Nedbank said that all communication between its servers and clients is encrypted, but recommended that users avoid public hotspots.
Standard Bank
Standard Bank said that it uses HTTPS to secure its banking sessions, but added that customers should avoid untrusted networks.
Also where did the banks admit their apps are worthless?

They advised people to rather use the app;
“FNB strongly recommends the use of our award-winning banking app for our customer’s day-to-day banking needs as well as for when travelling abroad,” the bank said.
Jeez I want what you are smoking...
 
Last edited:

Anthro

Expert Member
Joined
Jun 13, 2006
Messages
2,657
@TymeBank and their representative on here should comment on the discovery made by @waylander on their inability to properly secure their banking app with some form of biometric or more complex password system.
*spoiler alert* >> 4 Digit pin combinations (and the recent ability to look up ID numbers from other sources)
Does not make banking with them secure.
 

3WA

Executive Member
Joined
Sep 25, 2012
Messages
8,894
@TymeBank and their representative on here should comment on the discovery made by @waylander on their inability to properly secure their banking app with some form of biometric or more complex password system.
*spoiler alert* >> 4 Digit pin combinations (and the recent ability to look up ID numbers from other sources)
Does not make banking with them secure.
Are you not confusing Tymebank and Tymecoach? No-one should have a four digit PIN for the bank part.
 

whatwhat

Executive Member
Joined
Jun 1, 2009
Messages
6,173
Modern web security is good enough, if implemented properly.

However it isn’t easy as there are a lot of things to consider. Lets be honest and admit most people have no clue how to do it properly in the first place or would even be able to identify attack vectors.

A VPN is not a silver bullet for these problems.
 

backstreetboy

Honorary Master
Joined
Jun 15, 2011
Messages
17,842
@TymeBank and their representative on here should comment on the discovery made by @waylander on their inability to properly secure their banking app with some form of biometric or more complex password system.
*spoiler alert* >> 4 Digit pin combinations (and the recent ability to look up ID numbers from other sources)
Does not make banking with them secure.
Wasn't their banking app but Tymecoach which is just a credit score service...
 

r00igev@@r

Expert Member
Joined
Dec 14, 2009
Messages
4,481
How the F do you get to that conclusion?? Point out where they said their security is crap.

They only stated that public WiFi poses security risks, which everyone knows. Any decent bank would advise those to be cautious when using any public WiFi.

FNB


ABSA


Nedbank


Standard Bank



Also where did the banks admit their apps are worthless?

They advised people to rather use the app;


Jeez I want what you are smoking...
Where is your proof that public wifi poses a security risk? #fakenews
 

genetic

Honorary Master
Joined
Apr 26, 2008
Messages
32,045
Where is your proof that public wifi poses a security risk? #fakenews
Still waiting for your proof that the "banks are admitting that there security is cr@p?" and "Their app is worthless and their 2FA is rubbish? That is what they are admitting?"

The banks said nothing of the sort, so it seems you're the one spreading #fakenews.
 

r00igev@@r

Expert Member
Joined
Dec 14, 2009
Messages
4,481
Again, where was it implied?

Their statements say otherwise.
The banks statements are useless. They are never transparent about any hack. Never. All they are doing is a reflection to something else to blame to cover up their own incompetence.
It is implied in the "glitches" they have. Every time there is an outage, there is never a root cause provided. Where has a bank ever told the truth???? I challenge you to show me where their releases haven't been BS. Even the South African post office has been more transparent.
 

Johnatan56

Honorary Master
Joined
Aug 23, 2013
Messages
27,025
Currently at my bank branch on their wifi, it's public, while using their app.

Not sure if article means it's fine it not. Ah well, will stick with my self hosted VPN then.
 
Top