News

UK banks accused of bad online security

Wednesday 6 January 2016 00:48 CET | News

Over half of the UK`s high-street banks and building societies use outdated SSL security that means their online customers can be attacked by low-skilled cyber-criminals.

Security company Xiphos Research checked 22 UK-owned retail banks and found 50% still use vulnerable Secure Sockets Layer (SSL) certificates despite problems known about for months and even years. A further 79% of 25 foreign-owned retail banks operating in the UK, and 51% of the UKs top 37 building societies, are also insecure.

In 12 of the 84 cases, their SSL usage is rated as ‘F – the worst possible score they could have. The weak authentication puts banking customers at risk of well-known attacks like the POODLE man-in-the-middle vulnerability, which was revealed by Google researchers in October 2014, and the CRIME attack known about since 2012.


Free Headlines in your E-mail

Every day we send out a free e-mail with the most important headlines of the last 24 hours.

Subscribe now

Keywords: online fraud, online security, cyber security, fraud prevention, financial institutions, banks
Categories: Fraud & Financial Crime
Companies:
Countries: World
This article is part of category

Fraud & Financial Crime






Industry Events