140 BMO customers say they lost $1.5M in transfer frauds, plan to sue bank

billwanhua

本站元老
注册
2005-07-07
消息
15,377
荣誉分数
4,816
声望点数
373

银行还能不能用?
帐号里面没钱也不行,骗子从line of credit 里面贷款汇出去。

这个可能不一定是银行的过错,很多都是客户自己的问题或者银行账户被黑了。
Also, "in most of these cases, we are not able to recommend that the bank pay compensation to the consumer because our investigations show the consumer has unknowingly shared or given access to their confidential information and the bank has complied with its obligations," he said in an email.


How the fraud works
CBC News spoke with about half a dozen clients who say their BMO chequing, savings and/or line of credit accounts were drained when fraudsters somehow got access and sent themselves money through e-transfers, global wire transfers and by setting themselves up as payees for bills.

BMO told them they won't be reimbursed because their passwords were used correctly and, in some cases, one-time codes were sent and entered correctly and the IP addresses matched those of the client, according to emails from the bank.

The customers filed reports with police and the OBSI, who sided with the bank.

Cybercriminals can then mirror the victim's computer and log into accounts

"It actually looks like the victim is logging in themselves when they're not," Bagnall said. "So, as far as the checks and balances and controls and the reasonable effort that the bank is putting in, from a security perspective, they're doing the right things."
 

银行还能不能用?
帐号里面没钱也不行,骗子从line of credit 里面贷款汇出去。

这个可能不一定是银行的过错,很多都是客户自己的问题或者银行账户被黑了。
Also, "in most of these cases, we are not able to recommend that the bank pay compensation to the consumer because our investigations show the consumer has unknowingly shared or given access to their confidential information and the bank has complied with its obligations," he said in an email.


How the fraud works
CBC News spoke with about half a dozen clients who say their BMO chequing, savings and/or line of credit accounts were drained when fraudsters somehow got access and sent themselves money through e-transfers, global wire transfers and by setting themselves up as payees for bills.

BMO told them they won't be reimbursed because their passwords were used correctly and, in some cases, one-time codes were sent and entered correctly and the IP addresses matched those of the client, according to emails from the bank.

The customers filed reports with police and the OBSI, who sided with the bank.

Cybercriminals can then mirror the victim's computer and log into accounts

"It actually looks like the victim is logging in themselves when they're not," Bagnall said. "So, as far as the checks and balances and controls and the reasonable effort that the bank is putting in, from a security perspective, they're doing the right things."
可能和用手机登录银行账号有关,手机往往不如计算机安全

其次,收到不认识的伊妹儿不要点,直接删掉比较稳妥
 
很多人用电邮传送重要信息,没有特别的加密。尽管几家流行的邮件系统有缺省加密,但传统电邮和明码传送差不多,这个安全性就可想而知了。第三方登入认证的机制,也是提供了好多漏洞。
 
后退
顶部