Slashdot Mirror

← Back to Stories (view on slashdot.org)

Washington Post Says Use Linux To Avoid Bank Fraud

Posted by kdawson on from the just-common-sense dept.

christian.einfeldt writes "Washington Post Security Fix columnist Brian Krebs recommends that banking customers consider using a Linux LiveCD, rather than Microsoft Windows, to access their on-line banking. He tells a story of two businesses that lost $100K and $447K, respectively, when thieves — armed with malware on the company controller's PC — were able to intercept one of the controller's log-in codes, and then delay the controller from logging in. Krebs notes that he is not alone in recommending the use of non-Windows machines for banking; The Financial Services Information Sharing and Analysis Center, an industry group supported by some of the world's largest banks, recently issued guidelines urging businesses to carry out all online banking activities from 'a stand-alone, hardened, and completely locked down computer system from where regular e-mail and Web browsing [are] not possible.' Krebs concludes his article with a link to an earlier column in which he steps readers through the process of booting a Linux LiveCD to do their on-line banking." Police in Australia offer similar advice, according to an item sent in by reader The Mad Hatterz: "Detective Inspector Bruce van der Graaf from the Computer Crime Investigation Unit told the hearing that he uses two rules to protect himself from cybercriminals when banking online. The first rule, he said, was to never click on hyperlinks to the banking site and the second was to avoid Microsoft Windows."

7 of 422 comments (clear)

  1. Re:Just Linux? by sqrt(2) · · Score: 4, Funny

    We're trying to SAVE money here

    --
    If you build it, nerds will come. Soylentnews.org
  2. Re:What about the banks? by Tynin · · Score: 3, Funny

    What's the computer equivalent of the "This car protected by Smith & Wesson" bumper sticker?

    This computer is protected by retaliatory DoS attacks? I guess that is the best we can hope for until we work out a better implementation of PoIP (Punched over Internet Protocol).

  3. Re:terrible advice by Draek · · Score: 4, Funny

    hey, who says your CD burning software isn't infected - implications on trusting trust and all.

    I understand there's only a fine line between safety and paranoia, but the idea of a CD burning software having been compromised to detect Linux LiveCD ISOs and add a software keylogger to the system included therein is so far up in 'paranoia' territory it already got full citizenship and is considering running for president against "Elvis is hidden in Area 51" and "9/11 was planned by Israel to draw the US into the middle east".

    --
    No problem is insoluble in all conceivable circumstances.
  4. Re:What about the banks? by JumpDrive · · Score: 3, Funny

    "This computer runs Windows 7"
    The most secure operating system yet.
    And it will stay that way , Mr Balmer, as long as you don't release it.

  5. Re:What about the banks? by Inner_Child · · Score: 3, Funny

    What in the holy hell do people who make costumes have to do with any of this? I would be more concerned about the banks blaming things on their customers.

    --
    Today is red jello day - all workers must eat all of their red jello. Failure to comply will result in five demerits.
  6. Re:What about the banks? by jimicus · · Score: 4, Funny

    Mitchell & Webb put this pretty well:

    http://www.youtube.com/watch?v=CS9ptA3Ya9E

  7. I'll tell you what... by bdwoolman · · Score: 4, Funny

    What in the holy hell do people who make costumes have to do with any of this?

    If you are going to rob a bank anonymously you absolutely need a costumer. The costumer is the person who dresses up the bank robber in his archetypal stripped shirt and handkerchief mask. Costumers are typically blond with big... ideas.

    --
    "No fear. No envy. No meanness." Liam Clancy