We'd like to remind Forumites to please avoid political debate on the Forum... Read More »
📨 Have you signed up to the Forum's new Email Digest yet? Get a selection of trending threads sent straight to your inbox daily, weekly or monthly!
Strong Customer Authentication - **Now delayed** changes to online verification
Options
Comments
-
What's wrong with people? Why all the opposition to keeping your data and your money safer?
Even if the banks did it all just to reduce their liabilities for fraudulent transactions, the advantages to account holders appear obvious to me: starting with not having the hassle of chasing missing money, not having to prove that the fraudster wasn't actually yourself or that you haven't been in cahoots with the fraudster, and ending with banks not needing to up their charges in an effort to recoup the money they need to reimburse for some fraudulent transactions.
Besides, smart phones are now so prevalent that those who really cannot deal with OTPs can simply use the app for their banking. But presumably that is unacceptable, too, as the main objective is just to moan.
I'm not opposed to keeping my data and money safer. What I do object to is the assumption that everyone who banks online has a phone - whether smartphone, mobile, or landline. There should be alternatives in place for those in this situation.0 -
OP:
Just had an email from Yorkshire Bank detailing their changes to security from 14 September.When does it change?
These changes will happen on 14th September 2019.
What's changing?
Soon, to access your account online you'll need to use either:
Our mobile banking app. Using your passcode or fingerprint ID, you'll be able to log in to the app and tap to verify payments.
A one-time passcode we send to your mobile or landline. You'll be asked to enter this to go through to your account and complete a transaction.
Your security token (if you have one). You'll use the 8-digit number displayed on the token to log in to internet banking and verify payments.
I can't find a link on their website yet, but this should be enough info for you to update your list.0 -
I have no objection to the changes for making payments and setting up new payees - requiring readers or keys to simply view balances and transactions is another matter. People are less likely potentially to notice fraud quickly - if you make it harder to simply check balances and transactions.Long removed are we from the days people had one bank account - many now have several and use them for savings in effect. Making it harder to simply to monitor those accounts isn't good - easier to go overdrawn and not notice and more likely for fraud to be picked up later rather than sooner!0
-
Then there is the problem which seems to be unappreciated all over the web mostly by city dwellers that many places n the UK simply do not have mobile phone cover.
I appreciate you may not want to use WiFi calling for banking when away from home. I solve that issue by simply not doing any banking over WiFi when away from home, or only on networks that I trust (e.g. home of a family member who I know has a secure network).0 -
-
lightbulb2760 wrote: »These changes, along with the end of First Direct's Internet Banking Plus, will mean the end of being able to manage my banking online, as (by choice) I don't have a mobile phone or a landline. I don't fancy using a payphone, so the only option for me will be in branch banking, and with around 40 accounts spread over 15 institutions, that's going to be almost impossible.
You don't have a mobile *or* landline and you have 40 accounts spread over 15 institutions.
Are you deliberately going out of your way to make your life as complicated as possible?lightbulb2760 wrote: »I'm not opposed to keeping my data and money safer. What I do object to is the assumption that everyone who banks online has a phone - whether smartphone, mobile, or landline. There should be alternatives in place for those in this situation.
It's not an unreasonably assumption on their part though. How many people in the UK don't have *any* kind of phone *and* do their banking online?
If you don't want a phone, fine, but don't be surprised that when you intentionally put yourself into a tiny minority bracket that many organisations won't be willing to jump through hoops to suit your needs.0 -
lightbulb2760 wrote: »These changes, along with the end of First Direct's Internet Banking Plus, will mean the end of being able to manage my banking online, as (by choice) I don't have a mobile phone or a landline. I don't fancy using a payphone, so the only option for me will be in branch banking, and with around 40 accounts spread over 15 institutions, that's going to be almost impossible.lightbulb2760 wrote: »I'm not opposed to keeping my data and money safer. What I do object to is the assumption that everyone who banks online has a phone - whether smartphone, mobile, or landline. There should be alternatives in place for those in this situation.lightbulb2760 wrote: »That's the whole point of my post: there aren't any alternatives for those who choose not to use phones.
How do you suggest banks should be able to contact customers in real time when needing to fulfil their new statutory obligations to verify your identity with a second factor of authentication?0 -
Most people aren't setting up new payees or making payments daily - but this change will also apply if you simply want to login to review transactions, check balances or ensure you aren't going overdrawn online and via apps. Now with HSBC I will need my secure key to do the latter - indeed i noticed today they have already made the change so cannot login to internet banking without one (just made the change without notifying me when) with the app no doubt soon to follow.
Why can't banks still allow the viewing of latter online/via apps - and simply require secure keys/readers for payments? No issue with the changes in terms of new payees - seems over the top to require it as well simply to view and review transactions quickly (which could mean people actually discover identiy fraud and dodgy transactions more slowly if they don't want to carry card readers everywhere etc).
http://www.legislation.gov.uk/uksi/2017/752/regulation/100/made:Authentication
100.—(1) A payment service provider must apply strong customer authentication where a payment service user—
(a) accesses its payment account online, whether directly or through an account information service provider;
(b) initiates an electronic payment transaction; or
(c) carries out any action through a remote channel which may imply a risk of payment fraud or other abuses.This is an EU directive - I thought we were supposed to be leaving..........0 -
It isn't exactly hard to use an app to check your balance. In fact, it takes me a few seconds now to do it, and I don't even have to go anywhere near my laptop to do it. A simple "Siri, open Santander", or "Siri, open Barclays" etc, and a look at my phone is all I need now to log in. Obviously, I need a smartphone for starters - but I have one of those anyway as there are dozens of reasons why I have one, despite being of near dinosaur age now (in fact, getting older is even more reason for me to have a smartphone as I only need to look after one gadget now, as opposed to a dumb phone, a calendar, a pen, a diary, a phone directory, a step counter, a radio, a wallet bulging with debit, credit and loyalty cards, a camera, an alarm, a stopwatch etc etc etc)
.
I agree - it isn't hard to review balances and transactions on most banking apps now.
But HSBC - and presumably M&S and First Direct as they have the same parent - are soon removing all access to their app even just to view transactions and balances unless you have a secure key with you. That is being made very clear every time I logon now - same for my relatives. Internet banking without a secure key has already gone for me - and them as well. You can ask for a digital secure key - but it only works on newer smartphone devices. And not everyone therefore can use the app - and internet banking is blocked without the physical secure key.
What happens when people go away on holiday for two weeks in the Uk or abroad - make sure you pack all your secure keys, readers, debit cards (for devices) and more for all your accounts? Really - just to check all is ok and the balances are as they should be? Some people have many such accounts - and hand luggage allowances aren't that big on most airlines!
Perhaps you don't fully appreciate the changes some banks are making - and the impact it will have for some people such as the elderly and housebound!
Payments and transfers - fine we need the security - but just to check balances and transactions to ensure you are in credit and haven't been robbed - its overkill!0 -
What happens when people go away on holiday for two weeks in the Uk or abroad - make sure you pack all your secure keys, readers, debit cards (for devices) and more for all your accounts? Really - just to check all is ok and the balances are as they should be? Some people have many such accounts - and hand luggage allowances aren't that big on most airlines!Perhaps you don't fully appreciate the changes some banks are making - and the impact it will have for some people such as the elderly and housebound!
Payments and transfers - fine we need the security - but just to check balances and transactions to ensure you are in credit and haven't been robbed - its overkill!
I would support the idea that banks should be allowed to offer customers a bypass of the 2FA, on condition that those customers agree that they assume sole liability for all monies leaving their account. Though I bet you wouldn't be happy with that, either.0
Confirm your email address to Create Threads and Reply

Categories
- All Categories
- 351.1K Banking & Borrowing
- 253.2K Reduce Debt & Boost Income
- 453.6K Spending & Discounts
- 244.1K Work, Benefits & Business
- 599.1K Mortgages, Homes & Bills
- 177K Life & Family
- 257.4K Travel & Transport
- 1.5M Hobbies & Leisure
- 16.1K Discuss & Feedback
- 37.6K Read-Only Boards