Language Selection

English French German Italian Portuguese Spanish

Lax security enables ATM card fraud, report says

Filed under
Security

An unprecedented wave of Internet-based bank fraud has been enabled in part by banks that don't bother to check security codes on cash cards, according to a report released on Tuesday.

Roughly half of U.S. banks in recent years have stopped checking codes embedded in the magnetic stripe of ATM and debit cards, making it easier for online con artists to suck cash out of consumers' accounts, Gartner Inc. analyst Avivah Litan said.

"The only reason they don't check these things is because they forgot about it," Litan said. "Really, I'm furious."

Litan found that con artists took $2.75 billion in cash from bank accounts over the past 12 months, often by tricking consumers to reveal their bank-account numbers and passwords in a technique known as "phishing."

Banks usually cover consumer losses due to fraud.

About 70 percent of those losses could have been prevented if banks had verified magnetic-stripe information rather than relying only on account numbers and passwords known by consumers, Litan said.

But that would make it more difficult for customers to change their PIN numbers when they're worried about fraud, as they'd have to come into a branch office rather than simply picking up the phone or logging on to the bank's Web site, she said.

Another security code, the three-digit CVV code printed on the back of the card, can be easily guessed by fraud artists using an automated "brute force" attack, she said.

BANKS QUESTION ACCURACY OF REPORT

Full Story.

More in Tux Machines

Red Hat Enterprise Linux 5.11 to Be the Last Update for RHEL5

The developers of Red Hat Enterprise Linux 5.11 have said that this will be the last update to be released in the series and that it concludes one of the longest support periods for a Linux distribution. The distribution was released back in 2007 and it's been updated numerous times. The devs have continued to provide updates and various fixes for this OS, keeping it grounded in the present as much as possible. The truth is that RHEL 5 uses a very old Linux kernel (updated) and it still sports the old GNOME 2 desktop. Read more

Graphics Driver Changes Coming In The Linux 3.18 Kernel

While the Linux 3.17 kernel isn't being released for a few weeks, we already have a good idea for the DRM graphics driver improvements coming for the Linux 3.18 cycle. Linux 3.17 has many new features, including many DRM graphics improvements, with Linux 3.18 there's of course more changes to get excited about; it's a never-ending cycle in improving Linux graphics drivers and the kernel stack as a whole. With Linux 3.18 though, it's going to be the first release where the drm-next merge window is closing early. Usually David Airlie, the DRM subsystem maintainer, allows new DRM graphics driver code to be introduced up until the start of the next kernel merge window, with that drm-next code-base then being sent in for mainline inclusion. Beginning with Linux 3.18, Airlie is planning to close the merge window of drm-next around the -rc5 state of the previous release. As a result, this week is likely the last that major new DRM graphics driver code has a chance to land for making the 3.18 window. Read more

The Internet of Things Needs Open Source

Eclipse IoT now includes 15 projects collectively aiming to reduce the complexity of developing IoT/M2M solutions. Most of the Eclipse literature on this initiative uses that "IoT/M2M" label, because machine-to-machine communication is where it all started, and because it continues to be an essential part of IoT. But is IoT more all encompassing, which, Skerrett says, is what makes developing IoT solutions so challenging. Read more

MIPS-based Android Wear watch starts at $125

A “Com 1″ Indiegogo project is the first Android Wear smartwatch to use a Ingenics MIPS SoC. The watch offers IP67 waterproofing, WiFi, and a $125 price. The Com 1 Android Wear watch, from Brooklyn-based startup “Com LLC,” aims to reach $75,000 in Indiegogo funding by Oct. 6. Considering that major vendors have jumped on the Android Wear platform recently with arguably more stylish round-faced (Moto 360, LG G Watch R) and curved screen (Asus ZenWatch) watches, as well as a quad-core processor (Sony Smartwatch 3), the Com 1′s most compelling feature is its low price. It’s also notable for being the first Android Wear smartwatch we’ve seen that offers a MIPS-based Ingenics XBurst processor rather than an ARM-based processor, which is typically a dual-core, 1.2GHz Qualcomm Snapdragon 400. Read more