Gartner Blog Network

Posts from Date:   2010-9

Bank hackers using Zeus arrested – finally!

by Avivah Litan  |  September 30, 2010

I was pleasantly surprised to hear about the arrests yesterday in the UK, and the indictments today in the U.S.  for 19 and 34 individuals (probably the money mules – not the masterminds) respectively participating in Zeus-based trojan attacks against bank customer accounts. The UK perpetrators (15 men and 4 women) allegedly stole at least […]

Read more »

SMS/OTP under attack – Man in the Mobile

by Avivah Litan  |  September 28, 2010

This past week, I was made aware of two attacks on SMS/OTP which is commonly used by non-U.S. banks, and now Google Apps, for two factor authentication. I just had a demo of a phishing attack that captured my log in id and password to my presumed bank, and then told me to wait.  The […]

Read more »

Google two factor authentication a first step – but a lot more need to be taken

by Avivah Litan  |  September 20, 2010

Google announced two factor authentication for Google Apps today. It will use SMS/OTP – either sent to a phone or launched from a native smartphone application.  It’s sure to set off a round of hyped up enthusiasm among vendors clamoring to introduce cloud-based authentication services (e.g. VMware with its acquisition of Tricipher, CA with its […]

Read more »