By Steven Schwankert
Imagine: you walk into your local bank and find it's removed all of its security devices. No guards. No cameras. No plexiglass barriers between you and bank personnel.
The teller says, "Thank you sir for visiting our bank today. I would like to issue you our new security device." First you fill out a form stating that you've received the device, then she hands you a billy club. "Sir, if anyone tries to rob you or the bank, please use your club to defend yourself. Thank you buh bye."
Sound silly? Well, that's how the world's second largest bank has chosen to address problems with its Online HSBC service.
According to antispam and email security firm CipherTrust, HSBC (or more specifically, its customers) is the target of approximately five percent of all phishing attacks worldwide. "Phishing," as HSBC defines it, is "a scheme used by Internet cyber-criminals to 'lure' you into providing your personal and financial information online."
HSBC's anti-phishing site goes on to say that "the fraudsters create email masquerading as banks, credit card companies, online auctions, and department stores looking for you to update personal information."
Instead of utilizing the software and tactics offered by security vendors to upgrade their level and quality of protection, HSBC chose to put the burden on another party: you. Now, every time HSBC customers want to add a new transfer account to their Online HSBC account, they must snail-mail a paper request form, which then takes seven to 14 days to process.
HSBC decided that they should indeed improve their security–and again put the burden on its customers instead of itself. To this end, it is issuing all Online HSBC customers with what it has creatively titled "the Security Device."
"The Security Device has been selected by HSBC as the technology that best meets our customers' need for flexibility and portability, and our business volume requirements," the bank's FAQ on the device says.
The Device is about the size of a large keychain fob. Synchronized with HSBC's server, each time a customer wishes to login, he or she presses the button on The Device to generate a number. At login, the customer enters their username, password, and this number.
The FAQ addresses six questions, but the Grouch has thought of a few more:
1. What if I had a five-year-old at home who thinks seeing the numbers pop up on this thing is really cool, then presses it about 100 times before I realize it and then can't sync with HSBC's server?
2. How long will it take to replace this fine piece of technology when customers lose or break it, especially for those of us that don't live in Hong Kong?
3. Why is this our responsibility and not HSBC's?
HSBC has been trying to rid itself of its non-corporate clients for the last few years now by raising fees, closing branches to create longer lines and great inconvenience, and raising the bar for new consumer customers. Because HSBC owns approximately 70 percent of Hang Seng Bank, in Hong Kong it would prefer to see individuals use those ATMs, and keep the big corporate folks for itself.
The Device, which the Grouch hasn't received yet, doesn't meet his need for flexibility and portability. Being able to open up a secure connection on a browser and login using a password does. Having to fish out the anti-phishing device every time the Grouch wants to login, is a complicated step for most customers that will eventually lead to problems and the temporary inability to access Online HSBC, a service upon which many of us rely for our personal finances.
Here are some alternate solutions: ask to verify information other than the password. Although phishermen ask for a complete set of personal data, the usual forgotten password questions, like pet's name, place of birth, or mother's maiden name are not usually included, and could be used for simple verification.
Also, force passwords to expire. Every 30 days, when the customer logs in, they are alerted that it's time to enter a new password. And for any transaction beyond a certain limit, or to add a new account, the online part of the application or transfer process must be followed by a phone call. These are answers that don't break, don't change, and with which a five-year-old can't tamper, but could understand.
HSBC's service has been invaluable to the Grouch personally, but a clunky solution to a serious problem doesn't develop good security habits in customers, and doesn't lighten the security load for anyone but the bank itself.
About the author:
Steven Schwankert is a former editor of Computerworld Hong Kong, based in Beijing. He can be reached at [email protected]
HSBC: Abdicating IT Responsibility
Imagine: you walk into your local bank and find it's removed all of its security devices. No guards. No cameras. No plexiglass barriers between you and bank personnel.
The teller says, "Thank you sir for visiting our bank today. I would like to issue you our new security device." First you fill out a form stating that you've received the device, then she hands you a billy club. "Sir, if anyone tries to rob you or the bank, please use your club to defend yourself. Thank you buh bye."
Sound silly? Well, that's how the world's second largest bank has chosen to address problems with its Online HSBC service.
According to antispam and email security firm CipherTrust, HSBC (or more specifically, its customers) is the target of approximately five percent of all phishing attacks worldwide. "Phishing," as HSBC defines it, is "a scheme used by Internet cyber-criminals to 'lure' you into providing your personal and financial information online."
HSBC's anti-phishing site goes on to say that "the fraudsters create email masquerading as banks, credit card companies, online auctions, and department stores looking for you to update personal information."
Instead of utilizing the software and tactics offered by security vendors to upgrade their level and quality of protection, HSBC chose to put the burden on another party: you. Now, every time HSBC customers want to add a new transfer account to their Online HSBC account, they must snail-mail a paper request form, which then takes seven to 14 days to process.
HSBC decided that they should indeed improve their security–and again put the burden on its customers instead of itself. To this end, it is issuing all Online HSBC customers with what it has creatively titled "the Security Device."
"The Security Device has been selected by HSBC as the technology that best meets our customers' need for flexibility and portability, and our business volume requirements," the bank's FAQ on the device says.
The Device is about the size of a large keychain fob. Synchronized with HSBC's server, each time a customer wishes to login, he or she presses the button on The Device to generate a number. At login, the customer enters their username, password, and this number.
The FAQ addresses six questions, but the Grouch has thought of a few more:
1. What if I had a five-year-old at home who thinks seeing the numbers pop up on this thing is really cool, then presses it about 100 times before I realize it and then can't sync with HSBC's server?
2. How long will it take to replace this fine piece of technology when customers lose or break it, especially for those of us that don't live in Hong Kong?
3. Why is this our responsibility and not HSBC's?
HSBC has been trying to rid itself of its non-corporate clients for the last few years now by raising fees, closing branches to create longer lines and great inconvenience, and raising the bar for new consumer customers. Because HSBC owns approximately 70 percent of Hang Seng Bank, in Hong Kong it would prefer to see individuals use those ATMs, and keep the big corporate folks for itself.
The Device, which the Grouch hasn't received yet, doesn't meet his need for flexibility and portability. Being able to open up a secure connection on a browser and login using a password does. Having to fish out the anti-phishing device every time the Grouch wants to login, is a complicated step for most customers that will eventually lead to problems and the temporary inability to access Online HSBC, a service upon which many of us rely for our personal finances.
Here are some alternate solutions: ask to verify information other than the password. Although phishermen ask for a complete set of personal data, the usual forgotten password questions, like pet's name, place of birth, or mother's maiden name are not usually included, and could be used for simple verification.
Also, force passwords to expire. Every 30 days, when the customer logs in, they are alerted that it's time to enter a new password. And for any transaction beyond a certain limit, or to add a new account, the online part of the application or transfer process must be followed by a phone call. These are answers that don't break, don't change, and with which a five-year-old can't tamper, but could understand.
HSBC's service has been invaluable to the Grouch personally, but a clunky solution to a serious problem doesn't develop good security habits in customers, and doesn't lighten the security load for anyone but the bank itself.
About the author:
Steven Schwankert is a former editor of Computerworld Hong Kong, based in Beijing. He can be reached at [email protected]
Other Related News:
Tesla stock jumps on checkered outlook in China; Battery issue drains Rivian stock
Six Telecom Operators Test TD-SCDMA
Tesla pushes for China to ease transport restraints with increased COVID presence
Ericsson Names New Head For Northeast Asia
Amazon shuts down Xi Jinping’s e-book at the request of the Chinese government
KraneShares CSI China Internet ETF (NYSEARCA:KWEB) Shares Sold by Fisher Asset Management LLC
Commercial Greenhouse Market Size And Forecast According to Market Research, The Global Commercial Greenhouse Market was valued at USD 23.66 Billion in 2018 and is projected to reach USD 46.14 Billion by 2026, growing at a CAGR of 8.7% from 2019 to 2026. The latest survey on Global Commercial Greenhouse Market is conducted covering various organizations of the industry from different geographies to come up with a 100+ page report. The study is a perfect mix of qualitative and quantitative information highlighting key market developments, challenges that industry and competition are facing along with gap analysis and new opportunity available and trend in the Commercial Greenhouse Market. The report bridges the historical data from 2013 to 2018 and forecasted till 2026. The report aims to present the analysis of Global Commercial Greenhouse Market By Crop Type, By Equipment, By Competitive Landscape, By Geography – North America, Europe, South America, Asia-Pacific, Middle East, and Africa. The report intends to provide cutting-edge market intelligence and help decision makers take sound investment evaluation. Besides, the report also identifies and analyses the emerging trends along with major drivers, challenges and opportunities. >>> Get Download Sample Copy of This Report Now with Detailed TOC, Charts & Tables @ – https://www.kennethresearch.com/customization-request-10076420 What is a Commercial Greenhouse? Commercial greenhouses provide highly-controlled and stable environments for the cultivation of plants, such as flowers, vegetables, fruits, and transplants, typically for consumers. Greenhouses enable reliable growth of plants despite local climate, soil, or topographical challenges. Commercial greenhouses typically produce plants in large volume for consumers. Global Commercial Greenhouse Market Outlook In the report, the market outlook section mainly encompasses the fundamental dynamics of the market which include drivers, restraints, opportunities, and challenges faced by the industry. Drivers and Restraints are intrinsic factors whereas opportunities and challenges are extrinsic factors of the market. Factors such as the ability of commercial greenhouses to have a higher yield compared to traditional farming techniques and the decrease in arable land per capita are boosting the growth of the global Commercial Greenhouse market. Factors such as high set up costs and the lack of awareness concerning commercial greenhouses are restraining the growth of the market. Market Research narrows down the available data using primary sources to validate the data and use it in compiling a full-fledged market research study. The report contains a quantitative and qualitative estimation of market elements which interests the client. The “Global Commercial Greenhouse Market” is mainly bifurcated into sub-segments which can provide a classified data regarding the latest trends in the market. >>> You can also ask FREE Samples for region wise of this Strategic Report @ – https://www.kennethresearch.com/customization-request-10076420 Global Commercial Greenhouse Market Competitive Landscape The “Global Commercial Greenhouse Market” study report will provide a valuable insight with an emphasis on global market including some of the major players such as Richel Group SA, Argus Control Systems Ltd., Certhon, Logiqs B.V., Lumigrow, Inc., Agra Tech, Inc, Rough Brothers, Inc., Nexus Corporation, Hort Americas, LLC and Heliospectra AB. Our market analysis also entails a section solely dedicated for such major players wherein our analysts provide an insight into the financial statements of all the major players, along with its product benchmarking and SWOT analysis. The competitive landscape section also includes key development strategies, market share and market ranking analysis of the above-mentioned players globally. Global Commercial Greenhouse Market, By Equipment • Heating Systems • Cooling Systems • Others Global Commercial Greenhouse Market, By Type • Glass Greenhouses o Horticulture Glass o Other Greenhouse Glass • Plastic Greenhouse o Polyethylene o Polycarbonate o Polymethyl Methacrylate (PMMA) • In case of any Queries or Customization Requirements please connect with our sales team, who will ensure that your requirements are met. https://www.kennethresearch.com/customization-request-10076420 Global Commercial Greenhouse Market, By Crop Type • Flowers & Ornamentals • Nursery Crops • Fruits & Vegetables • Other Crop Types Global Commercial Greenhouse Market Geographic Scope • North America o U.S. o Canada o Mexico • Europe o Germany o UK o France o Rest of Europe • Asia Pacific o China o Japan o India o Rest of Asia Pacific • Latin America o Brazil • Rest of the World Research Methodology of Market Research: To know more about the Research Methodology and other aspects of the research study, kindly get in touch with our Sales Team Reasons to Purchase this Report • Qualitative and quantitative analysis of the market based on segmentation involving both economic as well as non-economic factors • Provision of market value (USD Billion) data for each segment and sub-segment • Indicates the region and segment that is expected to witness the fastest growth as well as to dominate the market • Analysis by geography highlighting the consumption of the product/service in the region as well as indicating the factors that are affecting the market within each region • The competitive landscape which incorporates the market ranking of the major players, along with new service/product launches, partnerships, business expansions and acquisitions in the past five years of companies profiled • Extensive company profiles comprising of company overview, company insights, product benchmarking and SWOT analysis for the major market players • The current as well as the future market outlook of the industry with respect to recent developments (which involve growth opportunities and drivers as well as challenges and restraints of both emerging as well as developed regions • Includes an in-depth analysis of the market of various perspectives through Porter’s five forces analysis • Provides insight into the market through Value Chain • Market dynamics scenario, along with growth opportunities of the market in the years to come • 6-month post sales analyst support
Oversight Republicans warn Biden's electric vehicle push will benefit China and hurt American jobs Verve times
How the current lunar missions differ from the last moon rush