RSS Feeds
Is it save to do online banking at a library computer?
I was wondering if it was safe at city and university libraries to do online banking. My online banking activity is limited only to checking my balance, the days activities on my checking account and how much interest savings account has gained.
I wouldn’t recommend it at all.
Any public computer is at risk to have been hacked. For hackers it’s the best place to fetch interesting data. Why, because they know that a lot of people will use it.
As for computer with some mechanism to prevent to install applications it can be easily hacked. The only thing it gives is respite for the IT guy in charge there (don’t need to fix the computers that have been screwed up) and a false sensation of security.
Besides, even the IT guy might be tempted to install himself all sort of software that can fetch the data he needs, such as login and password. Cleaning up the cache is the first good step to do to prevent anyone to get access to some lousy programmed website you have been to (like those that keep their session token in the URL, so you just need to go in History and replay it before it expires of course) but it doesn’t prevent the fact to have your data stolen. Key logger will get your login and password or session cookie and send it through Internet right away to the malicious server own by the hacker which will trigger an immediate alarm on the other side. At the moment the guy can just get your cookie and use it as if he was you and then change your password. How cool would it be the next time you come back and you don’t have access to your account?
The worst case is if he has your login and password. Later on he can at his own leisure go there. If nothing harmful can be done on that website he can try to access your personal email accounts by finding the email address directly on the website if you provided it or guess it from your login by adding hotmail.com or gmail.com. At that moment, if the password is the same or follow the same logic he can have access to your email account. There he might find other nice emails with account you have elsewhere. Where it can hurt you badly.
That and many other scenarios…
I’m not creating a movie it’s the reality.
So I suggest you go on any critical website on computer with really limited access to and you have control. Like home or work pc. Your friend place might be at risk as well since you don’t know where he went to. You just need to go on a website with a bad script and they own your machine. But be aware that nowhere is safe. After that it’s just risk assessment.
Besides you need to use that conventional media. Driving a car is dangerous but you don’t have an accident everyday.
July 3rd, 2009
yea i wouldnt do it.but if u really want to
i mean it could be just dont let the computer save your username nor the password.
in my opion i think that you should go to a friends house that you can trust. and use it there because it probably is safe but you really never know what can happen, but just to be on the safe side.
References :
July 3rd, 2009
Yes it is.
Just make sure you don’t save any of your passwords on Internet Explorer, Firefox, whatever.
And don’t have people watching you type in your stuff.
Libraries have pretty decent networks and not many "bad" guys would go to a library to sniff networks.
Anyways, online banking uses pretty sophisticated encryption so unless someone reallllllly doesn’t like you. You’ll be just fine.
References :
July 3rd, 2009
i don’t think is more saver, because is a public computer, everyone can use that computer, those good computer people still can steal your materail either on your pc or public computer,
i suggest u use on-screen keyboard to type in password or other important things, is a lot saver using on-screen keyboard on any computer,
References :
July 3rd, 2009
I guess it would depend on the library and the place…I personally would be worried about keyloggers and other sorts of programs someone could have installed, or who knows what else. If I were in your position, I would personally avoid it and rather go to a pay location where you see temporary internet files get erased, no permission to install apps, etc…..!
References :
July 3rd, 2009
Interesting question
every system you use including your own is risky, to an attack,
but cant stop using it , library ones are safe, safer than using a friends pc,
References :
July 4th, 2009
I wouldn’t recommend it at all.
Any public computer is at risk to have been hacked. For hackers it’s the best place to fetch interesting data. Why, because they know that a lot of people will use it.
As for computer with some mechanism to prevent to install applications it can be easily hacked. The only thing it gives is respite for the IT guy in charge there (don’t need to fix the computers that have been screwed up) and a false sensation of security.
Besides, even the IT guy might be tempted to install himself all sort of software that can fetch the data he needs, such as login and password. Cleaning up the cache is the first good step to do to prevent anyone to get access to some lousy programmed website you have been to (like those that keep their session token in the URL, so you just need to go in History and replay it before it expires of course) but it doesn’t prevent the fact to have your data stolen. Key logger will get your login and password or session cookie and send it through Internet right away to the malicious server own by the hacker which will trigger an immediate alarm on the other side. At the moment the guy can just get your cookie and use it as if he was you and then change your password. How cool would it be the next time you come back and you don’t have access to your account?
The worst case is if he has your login and password. Later on he can at his own leisure go there. If nothing harmful can be done on that website he can try to access your personal email accounts by finding the email address directly on the website if you provided it or guess it from your login by adding hotmail.com or gmail.com. At that moment, if the password is the same or follow the same logic he can have access to your email account. There he might find other nice emails with account you have elsewhere. Where it can hurt you badly.
That and many other scenarios…
I’m not creating a movie it’s the reality.
So I suggest you go on any critical website on computer with really limited access to and you have control. Like home or work pc. Your friend place might be at risk as well since you don’t know where he went to. You just need to go on a website with a bad script and they own your machine. But be aware that nowhere is safe. After that it’s just risk assessment.
Besides you need to use that conventional media. Driving a car is dangerous but you don’t have an accident everyday.
References :
Security professional for 6 years
July 4th, 2009
not safe
because it can be infected by virus
References :