CitiBank Forces Users To Install In-Secure Software

For some years now I have known that Citibank CitiDirect web login for online banking will only work with certain out of date JRE versions, the reason for this knowledge is the company I work for have CitiBank accounts.

Now since JAVA’s JRE has recently been found to be vulnerable to remote code execution this could have been a problem, but we expect that CitiBank would sort things out.

Well today the plot went seriously pear shaped as the issue vulnerability went public, the internet and every nasty cyber-criminal now knows of this. See the article published here on PacketStorm http://www.packetstormsecurity.org/1007-advisories/citibank-java.txt

I emailed CitiBank first thing this morning, asking for answers and have as yet had no reply.

Watch this space

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s