For some years now I have known that Citibank CitiDirect web login for online banking will only work with certain out of date JRE versions, the reason for this knowledge is the company I work for have CitiBank accounts.
Now since JAVA’s JRE has recently been found to be vulnerable to remote code execution this could have been a problem, but we expect that CitiBank would sort things out.
Well today the plot went seriously pear shaped as the issue vulnerability went public, the internet and every nasty cyber-criminal now knows of this. See the article published here on PacketStorm http://www.packetstormsecurity.org/1007-advisories/citibank-java.txt
I emailed CitiBank first thing this morning, asking for answers and have as yet had no reply.
Watch this space