Good bank for web-banking? (no phones used)
- Thread starter ThatDevAaron
- Start date
@ThatDevAaron I’ve used Lloyds which is basic and NatWest which has three-to-sign payment control
Both did what I want: pay bills, check balance, export csv
NatWest had facility to upload bulk transfer request, never used it. NatWest was also massively more complicated interface , thanks to the extra capabilities
Can’t see there’s much to choose between them, but I’m not a dev and I can imagine you might be more choosy about your UI
Both did what I want: pay bills, check balance, export csv
NatWest had facility to upload bulk transfer request, never used it. NatWest was also massively more complicated interface , thanks to the extra capabilities
Can’t see there’s much to choose between them, but I’m not a dev and I can imagine you might be more choosy about your UI
Upvote
0
If you use a password manager, then the passwords stored are linked to the real domain, so will not show up for fake phishing urls'
Upvote
0
Not sure I understand either of these.
I’ve got an eSIM so nothing to swap. How do hackers access my phone? Surely it would be easier to access your network and from there your PC.
Upvote
0
- Original Poster
- #50
esims are easier actually.
with the new invention of esims, fraudsters now don't even need to go through the tedious process of waiting for a sim card to be posted via mail (allowing you to hopefully realize whats happening as your main sim card would be unusable for this period); or instead having to go in a branch with ID etc to collect the SIM, now they just need get given the unique ESIM code, that is it.
Banks offer security, but, its best to employ your own practices, its not like people aren't getting robbed for their funds every day.
with the new invention of esims, fraudsters now don't even need to go through the tedious process of waiting for a sim card to be posted via mail (allowing you to hopefully realize whats happening as your main sim card would be unusable for this period); or instead having to go in a branch with ID etc to collect the SIM, now they just need get given the unique ESIM code, that is it.
Banks offer security, but, its best to employ your own practices, its not like people aren't getting robbed for their funds every day.
Upvote
0
Reading up on this and it seems the sim swap only works if the fraudsters have sufficient info to trick the phone company into making the transfer. It may be a prevalent activity but it’s not the smartphone that’s the problem. It’s people making their personal info available and falling for the phishing emails and calls.
Smartphones are secure. People are the problem.
Smartphones are secure. People are the problem.
Upvote
0
- Original Poster
- #52
yes and no.
they really only need a few bits of information, when you call up your provider, what do they ask you for? Date of birth, name, address, nothing hard to get. Lookup your emails in haveibeenpwned.com - and thats a small dataset - you're info, just like portions of mine etc, are probably out there.
That is why its vital to minimize the access you give these things, by using a banking app, every single one requires a phone number for something, that is a big risk as that number may be used to confirm your identity at any point in time.
Nothing is secure.
Upvote
0
- Original Poster
- #54
OTP is easy to avoid - all ISPs have alternative ways to verify customers, if an OTP isn't available, they can prove their identity by, for instance, confirming the amount you pay per month (usually a ballpark), and/or numbers you frequently call/get calls from (once again, not hard to get at all).
Trust me, if you think this stuff is secure, you're a pending victim of this shit
Upvote
0
I see Lloyds does bulk payments, too - I didn't realise. If I didn't say, Lloyds give access through a device that gives one-time codes from a combination of a bank card (ours isn't a debit card, only for web access) and a pin. (To slake your next tech question, it's an "Ezio Classic Reader".)
NatWest requires some mindbogglingly complex password that has to be changed every ?30 days. Or you can get a reset link to your ... email. (But it does add a 30 min delay, and emails other signatories first to tell them a reset has been requested, which is something.)
Upvote
0
You're right—phishing often works in ways that bypass password manager protections, especially through social engineering and deceptive tactics.
<Mod: removed self-promotion>
Last edited by a moderator:
Upvote
0
Latest Articles
-
The Most Dangerous Moment in Business Is When Everything Is Going WellThey Saw It Coming. They Did Nothing. The Lessons Every Business Owner...- Ozzy
- Updated:
-
AI and Your Business: Useful Tool, Not a Magic WandThere is no shortage of noise around artificial intelligence right now...
- Ozzy
- Updated:
-
Companies House WebFiling security incident: what happened, what to check, and what to do nextCompanies House has confirmed that its WebFiling service suffered a...
- Ozzy
- Updated:
-
Spring Budget 2026: A Quiet Update for UK BusinessesChancellor Rachel Reeves delivered the UK’s Spring Statement on 3 March...
- Ozzy
- Updated:
-
Practical Ways to Make Your Small Business More Resilient (Especially When the Unexpected Happens)Running a business means juggling plenty of things you can plan for and...- UKBF Editor
- Updated:
