Do you have any accounts with Citibank? Your information may have been compromised.

[thewayne]

Sadly, I don't think major financial orgs getting compromised is ever going to slow down.

Citi claims that the hackers did not get access to customer SSNs or card security numbers, but did compromise names, account numbers, and email addresses

http://www.h-online.com/security/news/item/Customer-data-stolen-from-Citibank-1257919.html

Comments

[thewayne.livejournal.com]

Sadly, size doesn't matter when it comes to good security. I was using a local bank, I think they have 4 offices. They changed their online banking software and I had a ridiculous amount of trouble with my password. They told you that your password had to be at least 8 characters, that wasn't a problem. So I'd set it, and then I couldn't get back in. I'd call their office, have them reset it, I'd reset it, and then I couldn't get back in.

Turns out that the system doesn't allow more than 10 or 12 characters, and my password was longer than that. And their system didn't trap that and disallow the entry of longer passwords.

Utter POS.

My second problem with this bank was that I caught their system in a crashed state, and it revealed information about itself that it shouldn't. And the scariest part of that? Their underlying database was Borland Paradox.

Definitely NOT an enterprise-level secure database.

So smaller isn't always the answer.

And no, I don't do business with them anymore.

[silveradept]

Yeah, I figured size didn't matter, excepting perhaps in the idea that small banks might not present themselves as a target when there are larger banks and places to attack.