Internet banking security

Sedated

So Im just been over cautious?

toastydave

you can use crap cleaner to remove the startup entry in the registry to stop this from happening, its just clear up from now on by the sound of it

toastydave

Mr_Oink wrote: »

Which is fine for you - but the rest of the world - particularly your average user - it makes no difference.

Whilst I admire your rhetoric, I was not aware that you - as a customer of IDNET running on a dynamic IP - were using DNSsec ;-) You may want to review your own security my friend - like I say, a false sense of security and all that :-)

How did you do that? I'm impressed, I guess the posters ip address is shown somewhere on the forum?

Please PM me and let me know if you dont mind?

JustPassingBy

Mr_Oink wrote: »

Which is fine for you - but the rest of the world - particularly your average user - it makes no difference.

https://www.grc.com/dns/dns.htm might find some use for those a little bothered about the DNS they use.

Whilst I admire your rhetoric, I was not aware that you - as a customer of IDNET running on a dynamic IP - were using DNSsec ;-) You may want to review your own security my friend - like I say, a false sense of security and all that :-)

Eh? It's not bedtime yet. That's when I usually read my fiction. At least, you didn't credit me with a TalkTalk account. My security is always under review, but FUD is not a motivator.

Mr_Oink

JustPassingBy wrote: »

My security is always under review, but FUD is not a motivator.

Like I say "They only see what they want to see....."

JustPassingBy

Mr_Oink wrote: »

An aside and observation; IDNET's name servers don't appear to support DNSsec either:

Why the concern about IDNET? I expect it forms part of the tale you are constructing. I hope this helps you to stick with facts:

dig +dnssec 212.69.36.2

; <<>> DiG 9.6-ESV-R3 <<>> +dnssec 212.69.36.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13075
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 4, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags: do; udp: 512
;; QUESTION SECTION:
;212.69.36.2.                   IN      A

;; AUTHORITY SECTION:
.                       1800    IN      SOA     a.root-servers.net. nstld.verisign-grs.com. 2011030500 1800 900 604800 86400
.                       86400   IN      RRSIG   SOA 8 0 86400 20110312000000 20110304230000 21639 . eZXBTSqBS3iTIfdSVW7kzx3KzMW8Q7UslWgJ8diKdaCI3o4oCG+qsCkp opk1ETn0iWcG53BmlZPIt5gdTa0lE/NCiHWQW+Xi/gphCqVIomYxsdXN 8fx5WGV468IE/MPuAutVdNygPLAJE7X2+peiEGXeCETRCvp55/9tN60k c2g=
.                       86400   IN      NSEC    ac. NS SOA RRSIG NSEC DNSKEY
.                       86400   IN      RRSIG   NSEC 8 0 86400 20110312000000 20110304230000 21639 . SmPiCk5+yf3CO4IFdObUtJJyp9FGPospetzpTt0rZEmMSp/1OY4SYonj x3ipZr847SvDtqiCfuQNlAv9iqdiao1gae34zg+Vh/Qv9sI/lkgmXJb2 jqD/wq5KJG0Sk2a4UKlk53f8Kip8BDdLtHbbMqQs+ejOuK0TIIonyEnr 6rY=

That said, if you had broken into a host DNSsec would be the last thing you would really care about - you'd just disable it and point it where you wanted.

'. . . .if you had broken into a host. . . . '. Is this an everyday occurance? Happens all the time? Could happen but is so rare we may as well get on with enjoying our time online and not worry about it?

JustPassingBy

Mr_Oink wrote: »

Like I say "They only see what they want to see....."

You did indeed say that. You also said:

I was not aware that you - as a customer of IDNET running on a dynamic IP - were using DNSsec ;-)

Which only goes to show that nonsense statements often come in pairs.

Mr_Oink

Mr_Oink wrote: »

Yes, it happens all the time - but you know best, eh :-)

Look - I'm sorry you got embarrassed about being wrong regarding your statement 'type the address in/use a bookmark'. I can understand that has upset you and made you look less of a man and all that

It's really this simple, you got something wrong, you made yourself look a bit of a tit, get over yourself :-)

paddyrg

OP, I had something very similar, all the hosts/DNS looked fine, and virus scan software came up empty handed... but it was still compromised. In the end it was faster and nicer to do a full format and rebuild - takes a few hours, but this has already taken you a few hours anyway... and you will know for sure you're clean.

I also use one of those hardware bank card authentication devices now, the ones where you type the transaction details in, enter your pin, and you get an authorision code - that stops this kind of fraud dead, so ask your abnk about it.

Mr_Oink

paddyrg wrote: »

I also use one of those hardware bank card authentication devices now, the ones where you type the transaction details in, enter your pin, and you get an authorision code - that stops this kind of fraud dead, so ask your abnk about it.

It's a brilliant system. Government & BT staff were using it years ago. That extra token, changing every 30 or so seconds, does make things more interesting and certainly more secure.

The caveat to that is something like Paypal *linked* to a bank account. You can empty the account without ever touching online banking itself - but Paypal security is a different subject. Thing is, where does it stop? If we all stopped using online banking and used cash from the local branch, what's to say we would not be robbed or mugged?