View this site in pounds View this site in dollars

Latest Technology News from Pulse Web Hosting

Latest Technology News:

Technology news from around the world subscribe to our RSS feed.

Online finance service introduces security tokens to tackle fraud

14/02/07 - Paypal, the service many people use to pay for items on eBay is to introduce security tokens to combat fraud through phishing. The token generates a random, six-digit code every 30 seconds which is then used as part of a user's login.
People logging in will still be required to enter their user name and password but Paypal believe this measure will prevent phishing attacks. Phishing is the practice where fraudsters use legitimate looking email requests for personal details so they can then illegally access accounts.

The token will be introduced to US customers first, with the UK due to be part of the trial later in the year. Paypal is owned by eBay and has more than 100 million accounts in 55 countries.

John Pescatore, a vice president at Gartner believes the Paypal have decided to introduce the token as their accounts are popular targets for phishing attacks. "PayPal has been one of the top targets for many years. They had to do something because they have been targets for so long," he said.

Community site Phish Tank listed Paypal and eBay as the first and third most popular targets for phishing attacks in January, respectively.

Using a security token is common in the business world and they provide an extra security layer when logging into corporate networks remotely. However some fraudsters have found ways to circumvent the security provided by the tokens.

The more sophisticated phishing attacks ask for the token passcode as well and then the attackers act on the information before the code resets. Programs which sit on a computer and monitor PayPal logins can also be used to break into an account.

Pescatore agrees that users should not believe that the introduction of a security token will immediately solve all of the security issues regarding information theft on the web. "All authentication with a token proves is that you have the token in your possession. I am concerned that businesses think that tokens are a solution to security problems. Consumers never know as much about security as they should," he said.

He was also perturbed by company charging $5 to it's customers for the security token. "If Paypal wants to increase security for its users, why are they charging $5?" he added.
Link to this news article using the url below:

http://www.pulsewebhosting.com/news/online-finance-service-introduces-security-tokens-to-tackle-fraud/32/

Published Date: 2007-02-14 13:41:35

Subscribe to our RSS News feed:
The web hosting rss feed Web Hosting RSS

Completely free trial of our power plus hosting package

Free web builder, create pages, insert images with ease

Your account

Latest News

(RSS)

Supanet hosting goes global

08/03/2007 – Supanet Hosting is making its hosting services available across the globe with the launch of a US Dollar (USD) site. The company advised that the decision to launch a USD site was a response to the widespread demand for their services from around the world.

British hacker to face extradition to the US

04/04/07 – The High Court has ruled against a British hacker who was trying to overrule a Home Office agreement to extradite him to America. 41-year-old Gary McKinnon stands accused by the US of the "biggest military computer hack of all time".

Apple announce Leopard release date

The update to the Apple operating system OS X, Leopard, will be released on 26 October according to the computer giant. It was originally scheduled to be released in June but had to be delayed as Apple prioritised the development of the iPhone.