Video | Agriculture | Confidence | Economy | Energy | Employment | Finance | Media | Property | RBNZ | Science | SOEs | Tax | Technology | Telecoms | Tourism | Transport | Search

 


Banking Ombudsman: accessing unsecured public Wi-Fi risky

Banking Ombudsman: accessing unsecured public Wi-Fi risky

People who store personal information, including bank account details and documents with signatures, on their email accounts put themselves at risk if they access emails using unsecured public Wi-Fi, says Banking Ombudsman Deborah Battell.

“In a recent case, an overseas couple put a six-figure sum on term deposit with a New Zealand bank only to have it stolen from the account months later. Our investigation found the theft occurred due to an unfortunate combination of the couple’s use of public Wi-Fi and because their bank’s security practices regarding emailed instructions were not sufficiently robust.

“In this case, the couple accessed their emails via unsecured public Wi-Fi at an American airport. Unfortunately their account was hacked and the fraudster found separate emails – one that included bank account details, and another with a signed employment contract attached. This ultimately enabled the fraudster to pose as one of the customers and successfully email instructions to the bank transferring funds out of the couple’s account.

“The fraudster was able to make the email look as though it had come from the couple’s address and fooled the bank into thinking it was genuine.

However, scheme investigators found the signature copied from the employment agreement was not the same as the one held by the bank. And, after surveying other New Zealand banks on their processes for emailed instructions, also found the particular bank’s practice was out of step with the rest of the industry at the time.

Some banks simply do not accept email instructions, acknowledging the risk of email addresses being hacked. Other banks accept emailed instructions, but only after verifying the request has come from their customer by, for example, calling the customer back at a number held on file and asking a series of security questions.

“It is crucial banking best practice prevails to maintain customers’ confidence. Fortunately, our enquiries have shown this to be an unusual case, and we were pleased the bank concerned moved quickly to enhance its security procedures around emailed instructions,” Ms Battell said.

Customers need to know the risks of storing documents on email, and regularly clear out information that could be used to verify their identity. It’s also a useful reminder that security questions (including those due to the new anti-money laundering requirements) and banks’ restrictions on how they accept instructions help to protect customers from fraud.

”We found in favour of the couple in this case and the bank has now reimbursed the amount fraudulently withdrawn, paid the couple interest lost following the withdrawals, and placed their total funds back on term deposit,” Ms Battell said.

ENDS

© Scoop Media

 
 
 
 
 
Business Headlines | Sci-Tech Headlines

 

Scoop Business: NZ Dollar Catches Breath After "Goldilocks" Slump

The New Zealand dollar edged up following its dramatic slump yesterday after the Reserve Bank confirmed speculation it intervened in the currency market last month and PM John Key suggested a “Goldilocks” level far lower than at present. More>>

ALSO:

Biosecurity: Kiwifruit Claim To Hold Officials Accountable For Psa

Kiwifruit growers have joined forces to hold Biosecurity NZ accountable in the courts for its negligence in allowing 2010’s Psa outbreak that devastated New Zealand’s kiwifruit industry and exports. Foundation claimants representing well ... More>>

ALSO:

Poison: Anglers Advised Not To Eat Trout In 1080 Areas

With the fishing season opening in just a few days (1 October 2014), anglers are being warned by the Department of Conservation(DOC) not to eat trout from pristine backcountry waters and their downstream catchments, where the department is conducting 1080 poisoning operations. More>>.

ALSO:

Quotas: MPI Swoop On Suspected Fraudulent Fishing Activity

Ministry for Primary Industries (MPI) compliance officers swooped on a Hawkes Bay fishing enterprise today to secure evidence in an investigation into suspected fraudulent activity... “The investigation involves activity throughout the commercial supply chain – catching, landing, processing and exporting.” More>>

ALSO:

Scoop Business: Fonterra Slashes 2015 Milk Payout, Earnings Tumble 76%

Fonterra Cooperative Group cut its forecast 2015 milk price payout by about 12 percent, citing weaker global dairy prices and said there is a risk of further declines given strong global milk production. More>>

ALSO:

Scoop Business: RBNZ Keeps OCR At 3.5%, Signals Slower Pace Of Future Hikes

Reserve Bank governor Graeme Wheeler kept the official cash rate at 3.5 percent and signalled he won’t be as aggressive with future rate hikes as previously thought as inflation remains tamer than expected. The kiwi dollar fell to a seven-month low. More>>

ALSO:

Weather: Dry Spells Take Hold In South Island

Many areas in the South Island are tracking towards record dry spells as relatively warm, dry weather that began in mid-August continues... for some South Island places, the current period of fine weather is quite rare. More>>

ALSO:

Get More From Scoop

 
 
Computer Power Plus

Standards New Zealand

Standards New Zealand

Mosh Social Media
 
 
 
 
 
 
 
 
Business
Search Scoop  
 
 
Powered by Vodafone
NZ independent news