You are here: silicon.com > Software > Security Strategy

Security Strategy

Fraudsters fool ABN Amro customers

Two-factor security breach...

Tags: fraudsters, abn amro

By Julian Goldsmith

Published: 20 April 2007 12:54 GMT

Customers of Dutch bank ABN Amro have been fooled by a phishing scam into revealing their passwords. According to reports, four of the bank's customers had an undisclosed amount of money stolen from their accounts, even though they were protected by a two-factor authentication system.

The system involves tokens and passwords that generate constantly changing codes as a secure method of identification. Fraudsters sent customers an email attachment which, when opened, covertly installed code on the user's machine.

silicon.com Financial Services

Get the latest financial services news straight to your inbox. Sign up for the FS newsletter today!

When customers tried to log on to their ABN Amro accounts they were redirected to a duplicate site controlled by the thieves, who were then able to use customers' account details and withdraw money through the bank's real site.

The bank has compensated the affected customers and warned customers not to open attachments from people they do not know.

Cheat Sheets

♦ Basel II
♦ MiFID
♦ Sarbanes-Oxley

A spokesman for ABN Amro said the bank took the issue seriously and would be taking steps to improve technological security to foil hackers in the future.

Two-factor security, while generally more secure than passwords alone, is inherently vulnerable to this sort of 'man in the middle' attack, industry commentators have said.

  1. Zones
  2. Management
  3. Networks
  4. Software
  5. IT Services
  6. Hardware
  1. Verticals
  2. Public Sector
  3. Financial Services
  4. Retail & Leisure

Clive Longbottom Windows 7: Not perfect - but ready for prime time Microsoft's latest OS fixes most of Vista's ills - but still has challenges ahead

Stephen Kleynhans Mind the details with Windows 7 Just because it might work better than Vista, it doesn't mean you can be sloppy


  • Jobs
Business Analyst - Risk / Operations - London

The role will be involved in the creation of a centralised log of cross functional issues arising from data inconsistencies across Risk, Operations ...

C# Developer - FX Trading Systems - Top Tier US Investment Bank

A position has opened for an experienced C# Developer in the FX Front Office Development team, for a major US Investment Bank. Investment Banking ...

Support Technician - Helpdesk

Maintenance of users requests around Passwords, Accounts, Permissions KEY SKILLS Focus on Customer Service Multi site support experience Problem ...

Agenda Setters 2009
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.





Quick Sitemap Links: