Tuesday, August 17, 2010

Blog H Blog 19

Phishing for security
With reference to the following two websites, complete Blog 19.

http://www.microsoft.com/protect/yourself/phishing/identify.mspx

http://www.smh.com.au/news/Management-Focus/Phishing-for-security/2005/04/11/1113071897711.html

Who do you think is responsible for internet security? If vendors do not take responsibility what will happen to their ability to sell online?
the website that I am referring to is http://www.smh.com.au/news/Management-Focus/Phishing-for-security/2005/04/11/1113071897711.html, and according to this website, it states that the bank blames the business man, as he is not wise enough to look after his personal account details. In the article it states as to why the bank blames the business man, "The US secret service found a Trojan called Corewood was responsible but in case still pending, the bank blames the buisnessman for not taking sufficient security precautions." On the other hand as I had read down the article, I had found a different quote in which it says this "However, the banks are responsible for authenticating authenticating the person performing the transactions. They must prove you are the owner of the account before you withdraw the money, and since such proof is harder to obtain online, then two-factor authentication is necessary.” In both of these quotes, you can see that it answers the questions and in my point of view, I would agree with the same thing as what the quotes in this article was saying, which I have listed above. But I have to say that the businessman should be wise enough and should be able enough to look after his personal account details, becuase if they are not able of looking after their personal accounts, then it may even end up to a very small false statement and then it may lead in theme losing their money.

What can vendors do to improve online security?
What banks strongly recommend vendors to do so that they are able to improve online security is that businesses are not supposed to, and are in fact not allowed to ask users to send any personal information through the e-mail.
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)