Slashdot Mirror

← Back to Stories (view on slashdot.org)

Bank Security Software EULA Allows Spying On Users

Posted by timothy on from the even-for-a-eula-that's-bad dept.

An anonymous reader writes Trusteer Rapport, a software package whose installation is promoted by several major banks as an anti-fraud tool, has recently been acquired by IBM and has an updated EULA. Among other things, the new EULA includes this gem: "In addition, You authorize personnel of IBM, as Your Sponsoring Enterprise's data processor, to use the Program remotely to collect any files or other information from your computer that IBM security experts suspect may be related to malware or other malicious activity, or that may be associated with general Program malfunction." Welcome to the future...

5 of 135 comments (clear)

  1. Re:How crazy by hawguy · · Score: 4, Informative

    Security scanning software that looks at all of my files? How will I be violated next? /sarcasm

    Seriously, these privacy alarmists are kooks. They have no idea how IT works.

    There's a big difference between scanning files and collecting them.

  2. Bank Security Guy here by Anonymous Coward · · Score: 5, Informative

    We're working with our internal legal folks to force this clause out of the EULA for all of our customers.

    Just letting you guys know that some of us do give a shit. Can't say which bank though.

  3. Re:How crazy by Anonymous+Brave+Guy · · Score: 4, Informative

    It wasn't alarmist when Rapport compromised the integrity of the computer I use to earn my living with a bad update. Boot from recovery disk, uninstall Rapport, revert to previous known good configuration, and the problem goes away. Let Rapport back on, computer immediately fails to boot again.

    I told the bank in question that the software they asked me to install wasn't working, and now every time I log in to their business banking site, and I decline to use Rapport selecting the option that says it didn't work for me, they tell me that Rapport has been tested by them. So not only do they want me to install malware, but my bank is also incompetent at security. Great, now I'm really thrilled to be trusting them with my company's money!

    --
    If you disagree, post your argument. (-1, Overrated) isn't your personal censorship tool for views you don't like.
  4. Re:not in BOA online banking by Anonymous Coward · · Score: 2, Informative

    Yes BOA pushes this:
    https://www.bankofamerica.com/privacy/online-mobile-banking-privacy/trusteer-rapport.go

  5. Trusteer is KRAP! by Sir_Eptishous · · Score: 4, Informative

    We have had to deal with Trusteer here at work. It is utter krap and will fubar normal Windows installs. Essentially the only way to get this to work is to dedicate a VM to it. We are lucky we only have to use it occasionally.

    --
    We play the game with the bravery of being out of range