Modernizing Authentication — What It Takes to Transform Secure Access
Cambridge University researcher Richard Clayton reports that members of the AnonGhost hacker group recently claimed to have breached and defaced the Web site for the U.K.'s Yorkshire Bank -- but they got the wrong site (h/t Softpedia).
The defaced site proudly claims "Hacked by AnonGhost ... We are watching you. 'Don't close your eyes.'"
The problem is, the site in question isn't the actual Yorkshire Bank Web site -- it's a phishing site registered to James Edward of Puchong, Malaysia.
"I have no reason to believe that anything good would happen to a Yorkshire Bank user (or a Yorkshire Building Society) user who used their credentials at the Malaysian owned Web site … so it’s rather hard to say whether having it defaced is detrimental to anyone living within a few hundred miles of Leeds," Clayton writes.https://l1.cdn.qnsr.com/log/p.gif?;n=203;c=204650394;s=9477;x=7936;f=201801171506010;u=j;z=TIMESTAMP;a=20392931;e=i
As Clayton notes, it's often a challenge for banks to uncover phishing sites that are designed to impersonate their official home pages.
"In this case, fortunately for Yorkshire Bank, AnonGhost is helping them out," he writes.