I am about to get one of these devices as I bank with HSBC & they tell me one is on the way.
http://www.bbc.co.uk/news/technology-16812064
Devices like PINSentry from Barclays and SecureKey from HSBC - which look a lot like calculators - ask users to insert a card or a code to create a unique key at each login, valid for around 30 seconds, that cannot be used again.
And apparently they are vulnerable to identity theft even before I have one...
A test witnessed as part of a BBC Click investigation suggests even those with up-to-date anti-virus software could be at risk.
But, possibly a bit of 'panic' in the story too.
Called a Man in the Browser (MitB) attack, the malware lives in the web browser and can get between the user and the website, altering what is seen and changing details of what is being entered.
Some versions of the MitB will change payment details and amounts and also change on-screen balances to hide its activities.
With the additional security devices, the risk of fraud is only present for one transaction, and only if the customer falls for the "training exercise".
It is big business &, obviously by the sums involved, Pretty successful at least some of the time!!
Online banking fraud losses totalled £16.9 million in the first six months of 2011, according to Financial Fraud Action UK.
