jm + tesco   6

This is how cyber attackers stole £2.26m from Tesco Bank customers | ZDNet
What a shitshow.
Poor design of Tesco Bank debit cards played a significant role in creating security vulnerabilities that led to thousands of customers having their accounts emptied. One of these involved the PAN numbers -- the 16-digit card number sequence used to identify all debit cards.

Tesco Bank inadvertently issued debit cards with sequential PAN numbers. This increased the likelihood that the attackers would find the next PAN number in the sequence.

It took 21 hours after the attack began before Tesco Bank's Fraud Strategy Team was informed about the incident.

Only after what the FCA describes as a "series of errors" -- including Tesco Bank's Financial Crime Operations Team sending an email to the wrong address, instead of making a phone call as procedure requires -- was the fraud team made aware of the attack.

In all that time, nothing had been done to stop the attacks, with fraudulent transactions continuing to siphon money from accounts as the bank received more and more calls from worried customers.
tesco  fail  tesco-bank  banking  pan-numbers  debit-cards  security  fraud  uk 
9 weeks ago by jm
Tesco Bank: 20,000 customers lose money - BBC News
"Any financial loss that results from this fraudulent activity will be borne by the bank," Mr Higgins said. "Customers are not at financial risk."


Well, that would be surprising....
tesco  banking  fraud  security  hacks  uk 
november 2016 by jm
KillBiller
Excellent mobile-phone plan comparison site for the Irish market, using apps which you install and which analyse your call history, data usage, etc. over the past month to compute the optimal plan based on your usage. Pretty amazing results in my case!

The only downside is the privacy policy, which allows the company to resell your usage data (anonymised, and in aggregate) -- I'd really prefer if this wasn't the case :(
mobile-phones  shopping  tesco  emobile  3g  4g  ireland  plans  comparison-shopping  killbiller  via:its 
may 2015 by jm
Tesco Hudl 2 review: a lot of tablet for the money
wow, an actually quite-good cheapo Android tablet from Tesco for UKP65 of Clubcard vouchers, recommended by conoro. Good for the kids
hudl  tesco  tablets  android  devices 
october 2014 by jm
Lessons in website security anti-patterns by Tesco
Troy Hunt, an Aussie software architect working on a .Net security product called ASafaWeb, does a great job extensively deconstructing Tesco's appalling website security on their shopping site. In the process, he gets this wonderful tweet from their customer-care account:

"@troyhunt Let me assure you that all customer passwords are stored securely & in line with industry standards across online retailers."

As he says, this is a clear demonstration that Tesco is in the first stage of the four stages of competence -- "unconscious incompetence": "The individual does not understand or know how to do something and does not necessarily recognise the deficit." ( http://en.wikipedia.org/wiki/Four_stages_of_competence )
tesco  security  passwords  web  http  https  ssl  funny  dot-net  shopping  uk  customer-care 
july 2012 by jm
Tesco fined for sending junk e-mail
first successful conviction under Irish anti-spam laws -- for a whopping, er, 2,000 Euros. at least it only took 2 complaints from 2 customers each (via Brian Nisbet)
dpc  anti-spam  ireland  law  tesco  prosecutions  convictions  via:bnisbet  from delicious
july 2010 by jm

Copy this bookmark:



description:


tags: