copyright | disclaimer | privacy | contact  
Australia's Leading Computer Emergency Response Team
 
Search this site

 
On this site

 > HOME
 > About AusCERT
 > Membership
 > Contact Us
 > PKI Services
 > Training
 > Publications
 > Sec. Bulletins
 > Conferences
 > News & Media
 > Services
 > Web Log
 > Site Map
 > Site Help
 > Member login

  Home » Publications » AusCERT Web Log » Perspectives on a recent SMH news article "Is intern...
 

Perspectives on a recent SMH news article "Is internet banking safe?"
Date: 12 December 2007

Click here for printable version
Today we noticed an article "Is internet banking safe?" that mentions AusCERT and cobbled together a raft of Internet Banking related bits and pieces.

The first reference to AusCERT was:

"AusCERT, our national computer emergency response team, says that by the time malware is out on the internet, 60% of it can't be detected by anti-virus software."

This point is from the 2006 Australian Computer Crime and Security Survey which stated:

"Testing of malware developed for the purposes of stealing personal information and account credentials has revealed
that, on average, 60% are not detectable by anti-virus software at the time they are discovered in the wild."

Which was the average of AV product effectiveness in statistics published by CERT.br. At the time, this made headlines all over the place, without making it clear that the sample set was of malware predominately targeting Brazilian internet users, not to mention that any attacker with half a brain would test their malware prior to release to ensure a low detection rate.

The second reference to AusCERT was after the writer appeared to confuse Windows Vista's BitLocker drive encryption with the User Access Control functionality:

"AusCERT's computer security analyst Rob Lowe also points out that BitLocker does nothing to prevent malicious code being installed on your system."

My actual response was:

BitLocker Drive Encryption only protects the data that is stored on the hard
drive. This feature is particularly useful when a laptop is lost or stolen and
means that an attacker can not read this data without the encryption key.
BitLocker does nothing to prevent malicious code being installed on the
system.

Windows Vista also introduces UAC (User Access Control) which makes it
easier for users to perform routine tasks (such as web browsing, reading
email, word processing etc.) with lower risk of malware being installed on the
system without the user's consent or knowledge.


I thought it was a shame that article doesn't actually acknowledge that Vista's UAC has improved the security of home user's PCs, but instead misrepresents the functionality of BitLocker encryption. It also belittles Microsoft's efforts (which I personally consider significant) in tackling phishing and malware based fraud.

I'll still continue to do my banking online and be more wary of journalists...


Rob


Comments? Click here http://www.auscert.org.au/render.html?cid=7066&it=8500