Menu
Many banking websites have you select your own security image when creating your account. For subsequent log ins the image is displayed along with a caption, if you do not see the image and caption you chose, you are instructed not to log in.
What is the purpose of this added step, which type of attacks does it protect against?
Thanks!
671
About a decade ago, banks began introducing security images — photos of beaches, teapots, coffee and foods, among other options users can select from — as a way to show customers that the web page they were logging into was legitimate and not a phony website designed by a fraudster.
Security Picture means an image that is being displayed to you as an anti-phishing security measure to ensure that you have logged in to the genuine Connect portal.
Short answer:
Phishing.
Long story:
If you receive a fake email instructing you to log in to your bank account following this link: http://i.am.an.cyber.pirate.com/give/me/your/money/paypal/official/site/ultra/secured/website/
And because you don't know about that kind of people, you click on it, but since you don't see your custom image, you know that you are not on the official site, because you, and only you should know about this image.
Let's say you choosed a picture of your dog and see your neighboor cat, well, don't log in then.
62
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
