We’d like to remind Forumites to please avoid political debate on the Forum.
This is to keep it a safe and useful space for MoneySaving discussions. Threads that are – or become – political in nature may be removed in line with the Forum’s rules. Thank you for your understanding.
📨 Have you signed up to the Forum's new Email Digest yet? Get a selection of trending threads sent straight to your inbox daily, weekly or monthly!
The Forum now has a brand new text editor, adding a bunch of handy features to use when creating posts. Read more in our how-to guide
Monzo app upgrade
Comments
-
Maybe there are no instances of anyone becoming a victim of fraud because apps won't run on an outdated OS. No access equals no chance of fraud.Chief_of_Staffy said:
I did answer the question, because I said twice now that I know of not one single case where a person 'became a victim as a result' of running apps on allegedly outdated OS. Given that there is no evidence of a security risk, why should I recommend they take any steps to mitigate it, let alone steps that making banking very expensive, very complicated and, for some people, impossible.Rob5342 said:
You didn't answer my question, what approach would you be happy with them taking?Chief_of_Staffy said:
I refer you back to my point about 'security flaws'. If someone demonstrates that they are a relevant risk then I might change my mind.Rob5342 said:
What do you suggest they do instead? Keep quiet when they find a security flaw, never fix anything they find and trust that nobody else will ever find the same flaw?Chief_of_Staffy said:
Claimed vulnerabilities exist practically from OS release day. Yet there is essentially zero evidence that these vulnerabilities translate to real world risk. Even the security researchers, whose livelihoods depend on inflating the risk, have nothing to offer in this department. It's basically the same story as we're told with MS Windows. You must install all security patches because otherwise a hacker will take over your PC! It simply doesn't happen.friolento said:Chief_of_Staffy said:
Tens of millions of people in the UK use apps on a wide range of hardware and firmware, and have done for many years. That's usage into the multiple trillions of occasions. Find me one instance of a customer, in the absence of negligence or complicity, having their account compromised because they were running the app on 'outdated' technology. Just one.
That would be hard to do because the providers of the apps will ensure that the supported versions of their apps only run on currently supported version(s) of the platform. This to protect their customers from inadvertently (or advertently) exposing themselves to security vulnerabilities.
If they never fixed anything and someone became a victim as a result you'd be saying that they show contempt for customers by not taking security seriously and putting profit first by not spending money on fixing things.I came into this world with nothing and I've got most of it left.3 -
In other words, an evidence-free approach. Convenient for the banks, the app coders and sellers, the phone manufacturers, pretty much everyone but the customer.Shakin_Steve said:
Maybe there are no instances of anyone becoming a victim of fraud because apps won't run on an outdated OS. No access equals no chance of fraud.Chief_of_Staffy said:
I did answer the question, because I said twice now that I know of not one single case where a person 'became a victim as a result' of running apps on allegedly outdated OS. Given that there is no evidence of a security risk, why should I recommend they take any steps to mitigate it, let alone steps that making banking very expensive, very complicated and, for some people, impossible.Rob5342 said:
You didn't answer my question, what approach would you be happy with them taking?Chief_of_Staffy said:
I refer you back to my point about 'security flaws'. If someone demonstrates that they are a relevant risk then I might change my mind.Rob5342 said:
What do you suggest they do instead? Keep quiet when they find a security flaw, never fix anything they find and trust that nobody else will ever find the same flaw?Chief_of_Staffy said:
Claimed vulnerabilities exist practically from OS release day. Yet there is essentially zero evidence that these vulnerabilities translate to real world risk. Even the security researchers, whose livelihoods depend on inflating the risk, have nothing to offer in this department. It's basically the same story as we're told with MS Windows. You must install all security patches because otherwise a hacker will take over your PC! It simply doesn't happen.friolento said:Chief_of_Staffy said:
Tens of millions of people in the UK use apps on a wide range of hardware and firmware, and have done for many years. That's usage into the multiple trillions of occasions. Find me one instance of a customer, in the absence of negligence or complicity, having their account compromised because they were running the app on 'outdated' technology. Just one.
That would be hard to do because the providers of the apps will ensure that the supported versions of their apps only run on currently supported version(s) of the platform. This to protect their customers from inadvertently (or advertently) exposing themselves to security vulnerabilities.
If they never fixed anything and someone became a victim as a result you'd be saying that they show contempt for customers by not taking security seriously and putting profit first by not spending money on fixing things.0 -
You didn't answer the question because you didn't state what you would like the os and phone vendors and the banks that do instead.Chief_of_Staffy said:
I did answer the question, because I said twice now that I know of not one single case where a person 'became a victim as a result' of running apps on allegedly outdated OS. Given that there is no evidence of a security risk, why should I recommend they take any steps to mitigate it, let alone steps that making banking very expensive, very complicated and, for some people, impossible.Rob5342 said:
You didn't answer my question, what approach would you be happy with them taking?Chief_of_Staffy said:
I refer you back to my point about 'security flaws'. If someone demonstrates that they are a relevant risk then I might change my mind.Rob5342 said:
What do you suggest they do instead? Keep quiet when they find a security flaw, never fix anything they find and trust that nobody else will ever find the same flaw?Chief_of_Staffy said:
Claimed vulnerabilities exist practically from OS release day. Yet there is essentially zero evidence that these vulnerabilities translate to real world risk. Even the security researchers, whose livelihoods depend on inflating the risk, have nothing to offer in this department. It's basically the same story as we're told with MS Windows. You must install all security patches because otherwise a hacker will take over your PC! It simply doesn't happen.friolento said:Chief_of_Staffy said:
Tens of millions of people in the UK use apps on a wide range of hardware and firmware, and have done for many years. That's usage into the multiple trillions of occasions. Find me one instance of a customer, in the absence of negligence or complicity, having their account compromised because they were running the app on 'outdated' technology. Just one.
That would be hard to do because the providers of the apps will ensure that the supported versions of their apps only run on currently supported version(s) of the platform. This to protect their customers from inadvertently (or advertently) exposing themselves to security vulnerabilities.
If they never fixed anything and someone became a victim as a result you'd be saying that they show contempt for customers by not taking security seriously and putting profit first by not spending money on fixing things.
0 -
That is the answer to the question.Rob5342 said:
You didn't answer the question because you didn't state what you would like the os and phone vendors and the banks that do instead.Chief_of_Staffy said:
I did answer the question, because I said twice now that I know of not one single case where a person 'became a victim as a result' of running apps on allegedly outdated OS. Given that there is no evidence of a security risk, why should I recommend they take any steps to mitigate it, let alone steps that making banking very expensive, very complicated and, for some people, impossible.Rob5342 said:
You didn't answer my question, what approach would you be happy with them taking?Chief_of_Staffy said:
I refer you back to my point about 'security flaws'. If someone demonstrates that they are a relevant risk then I might change my mind.Rob5342 said:
What do you suggest they do instead? Keep quiet when they find a security flaw, never fix anything they find and trust that nobody else will ever find the same flaw?Chief_of_Staffy said:
Claimed vulnerabilities exist practically from OS release day. Yet there is essentially zero evidence that these vulnerabilities translate to real world risk. Even the security researchers, whose livelihoods depend on inflating the risk, have nothing to offer in this department. It's basically the same story as we're told with MS Windows. You must install all security patches because otherwise a hacker will take over your PC! It simply doesn't happen.friolento said:Chief_of_Staffy said:
Tens of millions of people in the UK use apps on a wide range of hardware and firmware, and have done for many years. That's usage into the multiple trillions of occasions. Find me one instance of a customer, in the absence of negligence or complicity, having their account compromised because they were running the app on 'outdated' technology. Just one.
That would be hard to do because the providers of the apps will ensure that the supported versions of their apps only run on currently supported version(s) of the platform. This to protect their customers from inadvertently (or advertently) exposing themselves to security vulnerabilities.
If they never fixed anything and someone became a victim as a result you'd be saying that they show contempt for customers by not taking security seriously and putting profit first by not spending money on fixing things.Chief_of_Staffy said:Given that there is no evidence of a security risk, why should I recommend they take any steps to mitigate it0 -
You aren't saying what they should do instead l, so its a response saying you aren't going to engage, an answer that the question.
I doubt we'll get any further with this so I'll just leave it there.2 -
You keep asking what will they do instead of doing something that is not necessary. If someone doesn't do something that is not necessary then there's no requirement to replace the intended action with any other. If you rush to lock your car and realise it's already locked, you don't stand there in the middle of the street saying, "What do I instead of locking my car?" You just don't do it.Rob5342 said:You aren't saying what they should do instead l, so its a response saying you aren't going to engage, an answer that the question.2
Confirm your email address to Create Threads and Reply
Categories
- All Categories
- 353.5K Banking & Borrowing
- 254.2K Reduce Debt & Boost Income
- 455.1K Spending & Discounts
- 246.6K Work, Benefits & Business
- 603K Mortgages, Homes & Bills
- 178.1K Life & Family
- 260.6K Travel & Transport
- 1.5M Hobbies & Leisure
- 16K Discuss & Feedback
- 37.7K Read-Only Boards