Skrill’s Stronger Customer Authentication goes live September the 17th
- trento
- Gaining experience
- Karma: -2
Post
Re: Skrill’s Stronger Customer Authentication goes live September the 17th
Finally they will aply really changes 24th sept? .. Waiting
- arbusers
- Administrator
- Contact:
- Karma: 627
Post
Re: Skrill’s Stronger Customer Authentication goes live September the 17th
arbusers wrote: Official: SCA from Skrill will be delayed until September the 24th.
You can never be sure, but most probably yes.trento wrote: Finally they will aply really changes 24th sept? .. Waiting
- ISIN
- Gaining experience
- Karma: 3
Post
Re: Skrill’s Stronger Customer Authentication goes live September the 17th
This is madness. The hardware token was secure, unlike SMS.
Hacks are becoming increasingly sophisticated. SMS-based verification isn’t necessarily safe because someone who has your personal info (like the last four digits of your Social Security number or credit card), or even a fake ID in hand, can fairly easily call your carrier’s customer service and change the SIM or move the account over to another carrier. This hack method redirects all of your texts — including two-factor authentication codes sent over SMS — to the hacker.
Security expert Jessy Irwin said that while SMS is the least secure method for two-factor authentication, it’s better than nothing, and not inherently good or evil. “Where things get sticky isn’t actually the two-factor auth, it is when SMS is configured to be used for account recovery,” Irwin warned.
Or see:
https://www.telegraph.co.uk/technology/2019/02/01/metro-bank-hit-cyber-attack-used-empty-customer-accounts/
Also:
There are security weaknesses in the use of SMS as an authentication method, primarily a matter of the telephony signalling protocol (SS7). SS7 allows network providers to transfer data between themselves and is widely used for legitimate purposes. Unfortunately, the age and necessary open nature of the protocol means that it is vulnerable to use by fraudsters posing as a network provider through a legitimate MNO. They can then divert calls and messages to a mobile phone of their choice.
Hacks are becoming increasingly sophisticated. SMS-based verification isn’t necessarily safe because someone who has your personal info (like the last four digits of your Social Security number or credit card), or even a fake ID in hand, can fairly easily call your carrier’s customer service and change the SIM or move the account over to another carrier. This hack method redirects all of your texts — including two-factor authentication codes sent over SMS — to the hacker.
Security expert Jessy Irwin said that while SMS is the least secure method for two-factor authentication, it’s better than nothing, and not inherently good or evil. “Where things get sticky isn’t actually the two-factor auth, it is when SMS is configured to be used for account recovery,” Irwin warned.
Or see:
https://www.telegraph.co.uk/technology/2019/02/01/metro-bank-hit-cyber-attack-used-empty-customer-accounts/
Also:
There are security weaknesses in the use of SMS as an authentication method, primarily a matter of the telephony signalling protocol (SS7). SS7 allows network providers to transfer data between themselves and is widely used for legitimate purposes. Unfortunately, the age and necessary open nature of the protocol means that it is vulnerable to use by fraudsters posing as a network provider through a legitimate MNO. They can then divert calls and messages to a mobile phone of their choice.
Last edited by ISIN on Wed Sep 18, 2019 12:25 am, edited 1 time in total.
- arbusers
- Administrator
- Contact:
- Karma: 627
Post
Re: Skrill’s Stronger Customer Authentication goes live September the 17th
Let's not forget that tomorrow is the first day for Skrill under SCA (Stronger Customer Authentication).
- petpre
- Gaining experience
- Karma: 2
Post
You can´t login anymore or are force to register one when you login?
Re: Skrill’s Stronger Customer Authentication goes live September the 17th
Thanks for remind us. What will happen tomorrow if you didn´t register a phone number?arbusers wrote: Let's not forget that tomorrow is the first day for Skrill under SCA (Stronger Customer Authentication).
You can´t login anymore or are force to register one when you login?
-
4l
Post
Re: Skrill’s Stronger Customer Authentication goes live September the 17th
Also old skrill accounts will need phone? i dont understand it
- arbusers
- Administrator
- Contact:
- Karma: 627
Post
Re: Skrill’s Stronger Customer Authentication goes live September the 17th
PaySafe confirms there will be a requirement to define a mobile number for existing customers who don’t have any in their account yet.
If there is a mobile number assigned already, the system will use it to send the code as previously described.
If that number is not valid, there will be a need to get in touch with customer service as the system won’t allow to log in to the account.
If there is a mobile number assigned already, the system will use it to send the code as previously described.
If that number is not valid, there will be a need to get in touch with customer service as the system won’t allow to log in to the account.
Last edited by arbusers on Tue Sep 24, 2019 7:06 am, edited 1 time in total.
-
4l
Post
Re: Skrill’s Stronger Customer Authentication goes live September the 17th
so no sms for accounts which have 0€ balance but had money on skrill in the past?
-
4l
Post
Re: Skrill’s Stronger Customer Authentication goes live September the 17th
no phone for UK skrill old accounts for nowArberPro wrote: Any news from UK players ? about accounts the account that don't phone number?
- arbusers
- Administrator
- Contact:
- Karma: 627
Post
Re: Skrill’s Stronger Customer Authentication goes live September the 17th
Skrill's SCA (Stronger Customer Authentication) postponed once again.
No ETA is released.
No ETA is released.
- trento
- Gaining experience
- Karma: -2
Post
Re: Skrill’s Stronger Customer Authentication goes live September the 17th
maybe they are testing how many founds this situation move?
Because maybe lot of peolple scariest and move they founds to original ACC
Because maybe lot of peolple scariest and move they founds to original ACC
- arbusers
- Administrator
- Contact:
- Karma: 627
Post
Re: Skrill’s Stronger Customer Authentication goes live September the 17th
A quick update on Skrill's Stronger Customer Authentication (SCA)
The phone authentication is now live, for the following countries:
Bulgaria
Canada
Romania
Ireland
Netherlands
Sweden
Norway
Denmark
The rest of the countries will follow in the days to come.
Important notice. Clients will still have the option to completely skip this step. However, we strongly suggest to all clients to finish the authentication now, in order to avoid adventures later.
We 'll keep you posted when we have more news.
The phone authentication is now live, for the following countries:
Bulgaria
Canada
Romania
Ireland
Netherlands
Sweden
Norway
Denmark
The rest of the countries will follow in the days to come.
Important notice. Clients will still have the option to completely skip this step. However, we strongly suggest to all clients to finish the authentication now, in order to avoid adventures later.
We 'll keep you posted when we have more news.