We'd like to remind Forumites to please avoid political debate on the Forum... Read More »
We're aware that some users are experiencing technical issues which the team are working to resolve. See the Community Noticeboard for more info. Thank you for your patience.
📨 Have you signed up to the Forum's new Email Digest yet? Get a selection of trending threads sent straight to your inbox daily, weekly or monthly!
Man in middle attack - Banking forum
Options

ChiefGrasscutter
Posts: 2,112 Forumite


in Techie Stuff
Another example of what appears to be a man in the middle attack: Natwest in this case
-It's been put on an update at the end of page 1 and onto page 2 of this thread below- should be a new thread really.......
https://forums.moneysavingexpert.com/discussion/3184434
Directed to fake login site - which required them to enter details into and use a card reader.
Don't know about the Natwest system, but something somewhere seems a bit odd to me: you have to have physical possession of the card/chip surely as well as the PIN code to create a new payee.
-It's been put on an update at the end of page 1 and onto page 2 of this thread below- should be a new thread really.......
https://forums.moneysavingexpert.com/discussion/3184434
Directed to fake login site - which required them to enter details into and use a card reader.
Don't know about the Natwest system, but something somewhere seems a bit odd to me: you have to have physical possession of the card/chip surely as well as the PIN code to create a new payee.
0
Comments
-
Doesn't look like a Man in the Middle attack, looks like it was a redirection to a phishing site that appeared to look like the NatWest site but the victim was asked to use the card reader to log in. This process was probably then used to create a new payee and send money to that account.
To set up a new payee you do need the card reader and the physical card (and PIN) and a challenge-response system is used. The site probably created the challenge-response which automated creation of a payee and the cash amount to be paid.0 -
yep, ensure all your anti-virus and anti-malware definitions are up-to-date; and most importantly have your wits about you. these are getting real nasty now, and using ever more 'sophisticated' techniques.A new abacus
:A.
red robin ribbed :kisses2:.
Someone please contact the Society for the Prevention of Cruelty to Cans!0
This discussion has been closed.
Confirm your email address to Create Threads and Reply

Categories
- All Categories
- 350.9K Banking & Borrowing
- 253.1K Reduce Debt & Boost Income
- 453.5K Spending & Discounts
- 243.9K Work, Benefits & Business
- 598.8K Mortgages, Homes & Bills
- 176.9K Life & Family
- 257.2K Travel & Transport
- 1.5M Hobbies & Leisure
- 16.1K Discuss & Feedback
- 37.6K Read-Only Boards