We’d like to remind Forumites to please avoid political debate on the Forum.
This is to keep it a safe and useful space for MoneySaving discussions. Threads that are – or become – political in nature may be removed in line with the Forum’s rules. Thank you for your understanding.
📨 Have you signed up to the Forum's new Email Digest yet? Get a selection of trending threads sent straight to your inbox daily, weekly or monthly!
The Forum now has a brand new text editor, adding a bunch of handy features to use when creating posts. Read more in our how-to guide
Halifax Online Banking - Security Issue
Comments
-
No they need your signature to process that so they would not be able to change the address on the account and this information is on the Halifax Website click hereyou've just made quite a fatal mistake.
you need to phone halifax and tell them what you've done, with the information you've given a fraudster will be able to change the address on your account.0 -
They didn't used to!No they need your signature to process that so they would not be able to change the address on the account and this information is on the Halifax Website click here
As you rightly point out, the address does now have to be change the old-fashioned way.
But the poster is still open to having their funds WIPED OUT and needs to change password immediately and make a very urgent phone call to 0845 602 0000.0 -
What i would do is get the accounts closed and the cards blocked thats my way of sorting it out.opinions4u wrote: »They didn't used to!
As you rightly point out, the address does now have to be change the old-fashioned way.
But the poster is still open to having their funds WIPED OUT and needs to change password immediately and make a very urgent phone call to 0845 602 0000.0 -
Hi.
I have just phoned the Halifax and they confirmed that it would not have come from them as they would never ask for all your security details at once like that.
They said that I have a virus and I was advised to suspend my online account until I was able to remove the virus. However as the account, which is a joint account, is registered under my OH's name I was unable to authorise this and so OH has to phone them.
I have now changed the passwords and will try to sort out my virus infection.
Thanks for everyone's advice.0 -
Ok thanks for the update let us know how you get on.Hi.
I have just phoned the Halifax and they confirmed that it would not have come from them as they would never ask for all your security details at once like that.
They said that I have a virus and I was advised to suspend my online account until I was able to remove the virus. However as the account, which is a joint account, is registered under my OH's name I was unable to authorise this and so OH has to phone them.
I have now changed the passwords and will try to sort out my virus infection.
Thanks for everyone's advice.0 -
ClootiesMum wrote: »If your link to the bank is in your favourites then there have been instances where this has been compromised.
Google halifax & go in through a link from this rather than through your favourites. But run virus & malware first
I don't think that's sound advice. There have been a number of instances where fraudsters have set up scam sites with site names very adjacent to the Bank site names. And customers have strayed into these by relying on a search.
I always link from Favourites - it's only going to be compromised if you allow viruses in. And who has the time to run dedicated virus / malware checks prior to each occasion you might want to login to a financial site. If you run the right software and have a high degree of certainty you're 'clean' .... your Favourites will be trustworthy.If you want to test the depth of the water .........don't use both feet !0 -
I don't think that's sound advice. There have been a number of instances where fraudsters have set up scam sites with site names very adjacent to the Bank site names. And customers have strayed into these by relying on a search.
I would think it's also possible for a virus/malware to change your hosts file so that when you type in http://www.halifax.co.uk it redirects you to another server (say 123.456.789.100) which has a web page which then redirects you to http://www.halifax-bank.co.tw or some other dodgy fake site.
Good antivirus and firewall software helps stop this happening.
Halifax.co.uk is the bank. Halifax.com seems to be registered by someone else.0 -
Hi, came across this thread when trying to solve my problem. I have exactly the same problem, but with lloydsTSB website.
The webpage I get transferred to asks for all your security details, even down to your debit card security number.
The main thing is the internet address is exactly the same as the normal internet banking website - they must be able to mask the website address somehow now. You used to be able to spot it this way as it was a different form of the actual login screen.
This is via a works pc which has an virus check everyday and working via a VPN!
I still haven't managed to get rid of it, but I am using my other computer to log onto LloydsTSB and the screen dosn't come up. Interestingly the infected PC is able to logon to Halifax account with no problems.0 -
I would think it's also possible for a virus/malware to change your hosts file so that when you type in http://www.halifax.co.uk it redirects you to another server (say 123.456.789.100) which has a web page which then redirects you to http://www.halifax-bank.co.tw or some other dodgy fake site.
Good antivirus and firewall software helps stop this happening.
Halifax.co.uk is the bank. Halifax.com seems to be registered by someone else.
Is there anyway of checking the hosts file for this?0 -
This text was taken from Wikipedia
Security issues
Because of its central role in local host resolution, the hosts file represents an attack vector for malicious software. The file can be hijacked, for example, by adware, computer viruses, trojan horse software, and may be modified to redirect traffic from an intended destination to sites hosting content that may be offensive or intrusive to the user or the user’s computer system.
The widespread worm Mydoom.B blocked users from visiting sites regarding computer security and antivirus software and also affected users' ability to access the Windows Update website.
Administrators can set the file permissions of the hosts file to read-only as a means to help defend against malicious redirects caused by malicious software editing the hosts file when casual users without permissions use the computer.0
This discussion has been closed.
Confirm your email address to Create Threads and Reply
Categories
- All Categories
- 354.4K Banking & Borrowing
- 254.4K Reduce Debt & Boost Income
- 455.4K Spending & Discounts
- 247.3K Work, Benefits & Business
- 604K Mortgages, Homes & Bills
- 178.4K Life & Family
- 261.5K Travel & Transport
- 1.5M Hobbies & Leisure
- 16K Discuss & Feedback
- 37.7K Read-Only Boards