Forgot your password?
typodupeerror
Security

+ - Everything you know about password-stealing is wrong-> 1

Submitted by isoloisti
isoloisti (1610133) writes "An article by some Microsofties in the latest issue of Computing Now magazine claims we have got passwords all wrong.

When money is stolen consumers are reimbursed for stolen funds and it is money mules, not banks or retail customers, who end up with the loss. Stealing passwords is easy, but getting money out is very hard. Passwords are not the bottleneck in cyber-crime and replacing them with something stronger won’t reduce losses. The article concludes that banks have no interest in shifting liability to consumers, and that the switch to financially-motivated cyber-crime is good news, not bad.

Article is online at computer.org site (hard-to-read multipage format)
http://www.computer.org/portal/web/computingnow/content?g=53319&type=article&urlTitle=is-everything-we-know-about-password-stealing-wrong-
or pdf at author’s site.
http://research.microsoft.com/pubs/161829/EverythingWeKnow.pdf"

Link to Original Source
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Everything you know about password-stealing is wrong

Comments Filter:
  • "banks have no interest in shifting liability to consumers" ...but i must admit i actually sort of agree with this, or at least it doesn't seem way beyond the realm of possibility even though it seems unlikely in this era of bank super profits and legal shomozzles.

    i'm with ing and just about every revision to their t.o.s. seems to be about protecting online banking more and offering more protections, so while they seem to be alert to the problem, i haven't seen much in the way of duck shoving or passing the

"If it ain't broke, don't fix it." - Bert Lantz

Working...