Australian Tech

227 readers

2 users here now

For techs and techy stuff.

founded 1 year ago

MODERATORS

lodion@aussie.zone

Banking passwords stolen from thousands of Australians and traded online (www.abc.net.au)

submitted 3 months ago by zero_gravitas@aussie.zone to c/austech@aussie.zone

16 comments fedilink hide all child comments

top 16 comments

sorted by: hot top controversial new old

[–] Zachariah@lemmy.world 12 points 3 months ago (1 children)

The Australian firm Dvuln, which made the discovery, said the passwords were stolen directly from users' personal devices, which had been infected with a type of malware known as an "infostealer".

"This is not a vulnerability in the banks," Dvuln's founder Jamie O'Reilly said.

[–] MisterFrog@aussie.zone 2 points 3 months ago

If they don't have 2FA, yes it is a vulnerability in the banks. The fact we don't have any regulations on this is ridiculous.

[–] SenatorCollins@aussie.zone 8 points 3 months ago (3 children)

Yeah, that’s not very typical. I’d like to make that point.

[–] Nath@aussie.zone 16 points 3 months ago (3 children)

Having worked with and for Internet users for nearly 30 years, I can assure you that this is very typical.

[–] eureka@aussie.zone 4 points 3 months ago (1 children)

Well we don't want people thinking these banks are unsafe, just because the malware fell on and twenty thousand passwords leaked out into the internet.

[–] SenatorCollins@aussie.zone 3 points 3 months ago

I’m not saying they're not safe. Just perhaps not quite as safe as some of the other ones.

[–] trk@aussie.zone 4 points 3 months ago (1 children)

Pisses me off that I waste(?) all this time with password managers and 2FA and paying attention to URL and what not, and then some numpty out there with the password "qwerty123" who clicks on every damn "win an iphone" spam link they ever get sent expects to get bailed out when they lose their money in a scam.

Its like people who dont pay insurance wanting to be bailed out after a fire/flood or whatever.

Scammers are total jerks, but the people who keep falling for the most obvious shit are actually worse imo.

[–] SenatorCollins@aussie.zone 2 points 3 months ago

Well, some of them are built so that they don't leak passwords at all.

[–] SenatorCollins@aussie.zone 1 points 3 months ago

Absolutely ludicrous. These are very very strong systems.

[–] threeduck@aussie.zone 2 points 3 months ago (1 children)

Wouldn't you say Senator, that it's the government's responsibility to keep Australian's bank passwords safe?

[–] SenatorCollins@aussie.zone 2 points 3 months ago (1 children)

Well, I was thinking more about the other ones.

[–] threeduck@aussie.zone 1 points 3 months ago (1 children)

The other passwords?

[–] SenatorCollins@aussie.zone 2 points 3 months ago

Yeah, the ones that weren't leaked.

[–] No1@aussie.zone 1 points 3 months ago (1 children)

Do you think we could make the passwords safe again by taking them outside the internet?

[–] SenatorCollins@aussie.zone 2 points 3 months ago

Yes, they can be kept beyond the internet. They're not in the internet.

[–] No1@aussie.zone 1 points 3 months ago

The volume of obvious spam I get for BCF, NRMA/RACV/RACQ etc, "Congratulations! You've won...."

tells me a lot about what's a successful target profile looks like...