Editor's Note: Wow. 50% of American's do not know what phishing is. That's gonna be a tough hurdle to overcome if banks take the educational vs. elimination approach.
Also, make a mental note of the fact that keyboards, keystrokes and typing are almost always depicted in a cybercrime illustration...so when do we start swiping and eliminate typing?
Recently ESET commissioned Competitive Edge Research and Communications, Inc. to conduct a study about attitudes, beliefs, and experiences of Americans with respect to cybercrime. There were some interesting results.
One of the findings is that most American’s are not aware that cybercrime is linked to organized crime. Viruses and Trojans are no longer the purview of pimple-faced punks who never see the sun. Malware has become a tool of the organized crime, but only about one out of 5 Americans realize it is not the lone wolf who is biting them.
Not at all surprising is the fact that both PC and Mac users perceive the Mac as being safer, but the statistics show that Mac users are victims of cybercrime just as frequently as PC users. The most probable explanation for this would be confusing viruses as being cybercrime. 57% of Mac users feel it is safe to use their computers without antivirus software where only 27% of PC users feel it is safe to do so.
Much of the losses associated with cybercrime are related to phishing attacks. Phishing attacks are just as effective on Macs, Linux, Windows, Solaris, and any operating system since they rely on tricking the user and not upon malicious software or any software vulnerabilities. The Mac offers no immunity to phishing attacks and so we see a virtually equal percentage of victim representation across the board.
A significant part of the phishing problem is ignorance... The survey found that less than 50% of Americans even know what phishing is. It is difficult to defend against something one is not aware of.
Editor's Note: "It's difficult to defend against something one is not aware of?" Ya think? Why on earth would banks take on the daunting task of teaching individuals what the problem is and how to avoid it, when they have the means to eliminate it completely?
If 50% of American's don't even know what phishing is, it's going to be extremely difficult, at best, to get them up to speed.
Especially considering the fact that "Phishing" expeditions are becoming increasingly sophisticated. So-so-phisticated that they almost tricked the FBI director, whom I guarantee you, knows more about Phishing than the average bear. After that experience, he swore off online banking.
The writing is on the wall. You do the math. 50% of American's don't even know what phishing is and...according to ACI Worldwide...49% of online banking customers would switch banks if they (or someone they knew) became a victim of card fraud. Looks like about 50% of American's are going to be switching banks soon.
If customer acquisition (and retention) is an important factor in a bank's marketing platform,which according to a survey conducted by eMarketer, both top the 2010 list, (see graphic on right) then I have an ideal solution.
Rather than "teaching" consumers how to recognize a detail about a subject they are clueless on, how about arming them with a device that completely 100% eliminates phishing. If we stopped typing our financial details into boxes on websites vs. swiping their bank-issued card and entering their bank-issued PIN, then there would be nothing to phish phor....
An interesting finding was that it appears that when a Mac user is a victim of phishing they tend to lose more money on average than a PC user. I’m not ready to proclaim this as fact since we can’t explain the finding, but that was the undeniable trend found by this specific study.
With respect to online banking, 84% of the general public feels it is at least somewhat safe to bank online. When you look at the reasons given for not banking online then you see that well of over half of those people who shun online banking do so because of security concerns.
Of note, we did find a lower rate of cybercrime victims among people who use both a Mac and a PC. This is probably due to a higher level of computer and internet knowledge. Being educated to the threats and defenses is a quite effective in decreasing the odds of a user becoming a victim of cybercrime.
Randy Abrams
Director of Technical Education