You can't have failed to notice reports of a major Internet crime wave: phishing. This means duping consumers into divulging financial information using spoof Web sites.
Every Internet user in Britain must have received a phish by now: "Hello, this is Barclays Bank (or Citibank, or Paypal, or whoever) and we're just checking (or testing, or upgrading...) our security system, so please click on this link and enter your username and password (or card number and PIN)."
The link is, of course, not to the bank, but to the fraudsters' Web site. Once the customer enters their details, the fraudsters whisk them away for their own use: this use generally being to loot the bank account as quickly as possible.
If the fraudsters send out 10 million "Citibank" e-mails, and 1 percent of the hapless recipients are Citibank customers, and 1 percent of them are fooled, the fraudster could gain access to 100 Citibank accounts. It works. Major British banks have all admitted that accounts have been accessed and money stolen.
What is to be done? Phishing is possible because authentication of online services is so weak, consisting of nothing more than basic password authentication. It's just impossible to stop this sort of attack -- as in the case of so many other Internet attacks -- without better authentication. As Bill Gates said back in 2000 -- and as I've been saying for the last decade -- the industry needs to move to smart cards. At last, it might finally be on the horizon.
In the UK, banks are spending hundreds of millions of pounds on smart cards for "chip and PIN." As the advertisements have made clear, chip and PIN is targeted at shops in the real world. But suppose it could be used with your PC, TV or phone as well? And suppose it could be used without having to have a smart card reader in your PC, TV or phone?
As it happens, the banks have been developing the specifications for such a solution: it goes by the name of "token authentication."
The idea is that your bank would give you a small device, a bit like a pocket calculator. When you want to connect to your bank online you put your bank card into the calculator and punch in your PIN.
The device will generate and display a code number which you then enter into the Web site or tell the person on the phone. From this number, the bank knows that you had a real card and entered the right PIN.
Since you have to have both the card and the PIN, this is known as a "two factor" authentication, as opposed to the "one factor" password.
A simple, feasible solution. If industry starts to use the smart cards that are already being deployed, the phishers really will have had their chips.
Dave Birch is a director of Control Hyperion.
A series of strong earthquakes in Hualien County not only caused severe damage in Taiwan, but also revealed that China’s power has permeated everywhere. A Taiwanese woman posted on the Internet that she found clips of the earthquake — which were recorded by the security camera in her home — on the Chinese social media platform Xiaohongshu. It is spine-chilling that the problem might be because the security camera was manufactured in China. China has widely collected information, infringed upon public privacy and raised information security threats through various social media platforms, as well as telecommunication and security equipment. Several former TikTok employees revealed
At the same time as more than 30 military aircraft were detected near Taiwan — one of the highest daily incursions this year — with some flying as close as 37 nautical miles (69kms) from the northern city of Keelung, China announced a limited and selected relaxation of restrictions on Taiwanese agricultural exports and tourism, upon receiving a Chinese Nationalist Party (KMT) delegation led by KMT legislative caucus whip Fu Kun-chi (傅崑萁). This demonstrates the two-faced gimmick of China’s “united front” strategy. Despite the strongest earthquake to hit the nation in 25 years striking Hualien on April 3, which caused
In the 2022 book Danger Zone: The Coming Conflict with China, academics Hal Brands and Michael Beckley warned, against conventional wisdom, that it was not a rising China that the US and its allies had to fear, but a declining China. This is because “peaking powers” — nations at the peak of their relative power and staring over the precipice of decline — are particularly dangerous, as they might believe they only have a narrow window of opportunity to grab what they can before decline sets in, they said. The tailwinds that propelled China’s spectacular economic rise over the past
President-elect William Lai (賴清德) is to accede to the presidency this month at a time when the international order is in its greatest flux in three decades. Lai must navigate the ship of state through the choppy waters of an assertive China that is refusing to play by the rules, challenging the territorial claims of multiple nations and increasing its pressure on Taiwan. It is widely held in democratic capitals that Taiwan is important to the maintenance and survival of the liberal international order. Taiwan is strategically located, hemming China’s People’s Liberation Army inside the first island chain, preventing it from