From mboxrd@z Thu Jan  1 00:00:00 1970
Message-ID: <4C2B613A.3070803@authentrus.com>
Date: Wed, 30 Jun 2010 11:22:34 -0400
From: Wes Kussmaul <wes@authentrus.com>
User-Agent: Thunderbird 2.0.0.24 (Windows/20100228)
MIME-Version: 1.0
To: Fans of the OS Plan 9 from Bell Labs <9fans@9fans.net>
References: <AANLkTinTvk4aF-n5BWTJw-7D7lKXhY3708KFvsqcPpKC@mail.gmail.com>	<f1af614af35a2f189337e2c876ab9353@quintile.net>	<AANLkTimBvFiV09MQcUpKRZoExcHcVPUn1oFngEHXOnRv@mail.gmail.com>	<1449883d7baedf2bc03d0857a73b6a98@coraid.com>	<AANLkTim_3pauNZbTQm-uyoWv0m09MaW8wPeKtdSLCVPG@mail.gmail.com>	<cc46666fc01b510fb0ab8df960136c36@ladd.quanstro.net>	<AANLkTiltIvLwnsQ7KD7Mg1-lovxPWkEP_fdBmJDcudgZ@mail.gmail.com>
	<b4d080b142b3f461c31e2bbc4aa840d3@kw.quanstro.net>
In-Reply-To: <b4d080b142b3f461c31e2bbc4aa840d3@kw.quanstro.net>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Subject: Re: [9fans] offered without comment or judgement
Topicbox-Message-UUID: 3b1ed4d4-ead6-11e9-9d60-3106f5b1d025

erik quanstrom wrote:
> also, an atm card is a 2-factor authentication scheme.  and
> you get 3 guesses.  assuming you can steal the card

Assuming you are a member of the main source of Net fraud, that is, a
customer of one of the botnet builders doing 30 thousand victims at a
time from your command center in Estonia, what are the chances of
stealing 30,000 physical cards per round of theft?

> a better attack might be to shoulder surf and then socially
> engineer the bank into sending you a card.

Onesies, how quaint. Almost a lost art.

wk


--
Learn about The Authenticity Economy at

http://video.google.com/videoplay?docid=-1419344994607129684&hl=en#