On Feb 20, 2010, at 10:28 PM, Fred Holmes wrote:
One bank uses a pictogram -- picture. After entering only your username, a different/succeeding page loads that shows a picture and queries your password. This picture is individual for each customer. You get to pick it out of a huge library of pictures when you sign up for an on-line banking account. If the proper picture doesn't show, then the user concludes that the site has been hijacked and the page is invalid. Therefore the user does not enter his password and the "thief" page doesn't capture his password.
If your bank does not do something like this to assure you that you that you are indeed connected to the bank, you should find a different bank. This is a simple and highly effective way to protect customers. If they can't manage something this simple, who knows what else they have failed to do correctly.
************************************************************************* ** List info, subscription management, list rules, archives, privacy ** ** policy, calmness, a member map, and more at http://www.cguys.org/ ** *************************************************************************
