Bonum Certa Men Certa

[Video] 3 Major Issues in Nationwide, Including (Potentially) a Major Data Breach

posted by Roy Schestowitz on May 23, 2024

Video download link | md5sum 41588754d32c7c1fb9291cffb1f2d70c
Nationwide Security Blunder or More?
Creative Commons Attribution-No Derivative Works 4.0

Preview for Nationwide Security Blunder or More?

BANKING "online" or 'electronic-bank' security has become the joke of the town. Many "modern" banks use inadequate systems and there are new reports this week regarding famous banks cautioning customers about advanced phishing scams (see Daily Links), as usual blaming buzzwords and straw men like "AI" (chatbots or "HEY HI", which doesn't accurately describe LLMs).

In our case, it seems plausible or likely to be much worse than phishing. It looks like Nationwide has suffered a data breach because a highly sophisticated scam, not "HEY HI" chatbot, apparently uses people's names and postcodes to seem legitimate. If those messages are in fact legitimate, that's worrying for a number of other reasons.

So I phoned them up. And they refuse to take a report about this. Or rather, they make it unnecessarily hard. This has become rather typical, as businesses are good at taking money but rather reluctant to take complaints.

In my case, to make matters worse, the complaints number gets through to a person who deals with mortgages! No kidding, I even double-checked while on the line. She tried to blame this on me, but I assured her I phoned the correct number, so it seems like an IT issue (again). Lines crossed?

As they do not let customers talk to IT or to managers (but put them on hold and speak to some unspecified party), maybe they are contracting all this stuff (and staff) outwards.

Towards the end of the call we were comparing the link in her legitimate E-mail to mine, as it goes not to the same domain at our end (unless there's a misunderstanding). Suffice to say, a bank linking to some dodgy third-party domain with extensive tracking in the URL is a terrible security practice, which in itself constitutes a reportable issue. Whoever is responsible should/can/might be sacked on the spot if this was a deliberate design issue. But who knows... they try to not even talk about this issue and refuse to let you speak to the most suitable person. "Nobody else has this problem" would likely be the go-to excuse. "You're only a customer... who are you to care about our IT systems failing...?" (Like Sainsbury's [1, 2, 3, 4, 5, 6, 7, 8, 9, 10]). I recorded the call (didn't plan to publish it; it's crude), so nobody can say I take it out of context. It's totally unedited, so there are some bits there that could be cropped out (albeit it would require further processing).

In the name of "cost-savings" (high profits, temporarily, so some managers bag bonuses) many banks nowadays want to reduce themselves to (just/at most) some overseas AWS ("clown computing") account. Instead of branches they want to herd customers into skinnerboxes with "apps" (or Web sites). This is a worrying trend, akin to some scenes from I, Daniel Blake.

Other Recent Techrights' Posts

In Malawi, Windows Down to 10%, GNU/Linux Growing
it's not a small country
[Meme] Featuritis
Newer is not always better
 
Honduras: Vista 11 Down, GNU/Linux Up
Valve sees GNU/Linux as bigger than Apple's MacOS
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Thursday, June 13, 2024
IRC logs for Thursday, June 13, 2024
LibrePlanet 2024 and the Lost Video/Audio of Talks
After the event was over someone informed us that due to technical issues they had lost (or failed to acquire) recordings of the talks
Choosing Between Options to Outsource to Evades the Best Solution (Self-Hosting)
Most users don't need this sort of complexity
IBM Layoffs at Kyndryl
This can soon spill over to Red Hat
Turkmenistan: GNU/Linux Leaps Past 5% This Month?
This is how statCounter sees it
Watch This Space
what matters most is not the volume or quantity of publications but their underlying depth and quality
Short Downtimes, Planned Maintenance
Hypervisor maintenance is planned
Links 13/06/2024: Ongoing Sharp Increases in Deaths, Mediterranean Diet Linked to 23% Lower Risk of Death in Women
Links for the day
Gemini Links 13/06/2024: Linuxing of the Dell Laptop and Deep Dive into the World of the OpenEarth Foundation
Links for the day
New Highs for Android in Haiti (Nearly 80%), Microsoft Windows at Only 4%
that's Android at another new high and very close to 80% (it now seems inevitable)
[Meme] How Stefano Maffulli (and Microsoft's Own OSI Insiders) Make Money
Milking what's left of the OSI by attacking its very mission - something that more people now recognise
Mobs Don't Get the Job Done (Mob Leaders Have Lost Credibility/Visibility, Job, or Both)
their demands weren't met
Montenegro: GNU/Linux "Proper" at Over 6%
Windows is down to record lows
Links 13/06/2024: Overpopulation Woes, Best Buy Lays Off More Employees
Links for the day
Nationwide Eventually Did Listen
Miles better than their original nonresponse
The Corruption of Open Source Initiative (OSI), a Front Group of Microsoft and GAFAM, Openwashing Proprietary Things and Even Plagiarism, GPL Violations
Stefano Maffulli (and Microsoft's staff that works with him) basically profits from anti-FOSS
"AI" Tech Bubble
How much "hype quotient" does this whole "hey hi" (AI) thing have left in it?
Links 13/06/2024: Science, Politics, and Gemini
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Wednesday, June 12, 2024
IRC logs for Wednesday, June 12, 2024
Gemini Links 12/06/2024: The Rodent Revolution and Adding Twisty Puzzles
Links for the day
Links 12/06/2024: Ukraine War Updates and Many Patents Being Subjected to Squashing Bounties
Links for the day
Ireland Last to Report Election Results
Daniel Pocock's involvement in Australian politics goes back to his university days
Never Sleeps, Never Slumbers
We're going to try to improve not just in quantity but also in quality
[Meme] The Purpose of Life is to Find a Desk
dogs have desks
EPO Has Gotten So Bad That Workers Need to Ask to be Allocated a Desk (at Work)
Wow!!!! An “allocated workplace”!!
Tux Machines Parties Going Well Do Far
Cross-posted from Tux Machines
In Many Countries, Both Large and Small, Vista 11 is Losing Market Share (Despite New PCs Coming Preloaded With It)
One need not even consider large nations in isolation
By "Going Public" the Raspberry Pi Ensures It'll No Longer Serve the Public
It'll be owned and controlled by whatever people wish to control it
Dave Wreski Also Plays the Bot Game (Chatbot) at LinuxSecurity to Fake 'Articles' About "Linux"
How much longer can they fool search engines (SEO) and readers?
[Meme] Indisputable Success
MICROSOFT buys shares of MICROSOFT
Links 12/06/2024: 'Hey Hi' (AI) Bubble Imploding Already, Danish Media Threatens to Sue OpenAI
Links for the day
Links 11/06/2024: Floods in Germany and Brazil, Political Violence
Links for the day
Gemini Links 12/06/2024: Sketching Plants, OpenBSD Pubnix
Links for the day
"2025 the year of Linux on the Desktop"
Charlie Stross quote
In Bahrain, Historically Low on GNU/Linux Adoption, Things Change for the Better
They have some people who understand Free software
Daniel Pocock Received Twice as Many Votes as Andreas Tille (Debian Project Leader After 2024 Election)
From the media yesterday...
Debian is Built by Hundreds of Volunteers and 524 Irish People Voted for Daniel Pocock
524 in that area went to the polling station to vote Daniel Pocock (Ind)
[Meme] RMS is 'Too Old', Says Company Run by a Person 5 Years His Junior (Ginni Rometty) and 10 Years His Junior (Arvind Krishna)
Never again?
[Meme] Women in Computer Science
Grace Hopper, Ada Lovelace etc.
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Tuesday, June 11, 2024
IRC logs for Tuesday, June 11, 2024
Togo: GNU/Linux Growing Fast This Year, Now Measured at 6%
Sending Bill Gates with a suitcase to bribe African officials isn't enough anymore
Free Software Projects Need to Chase Away Men Who Attack Women Rather Than The Women Who Complain
A just society holds people accountable rather than covers up such blunders
Improving the Image of Women in Free Software by Hiring and Promoting the Proficient Ones
Million's shaman background isn't the problem, or even the superstitious ghost-chasing. The problem is that she has absolutely no background in Free software.
They Say Cash is King
People who value their freedom will pay with cash any time they can
'Team Microsoft' Wants to Leverage Our Popularity as a Weapon Against Us
In the past 2 days we published 64 articles and served over a million HTTP/S requests