Has anyone else been through the extra security measures process at a certain banking organisation?
If so, were you daft enough to give your parents' real middle names, correct first school, correct first employer, etc?
If so, I hope you don't have a profile in Friends Reunited (or similar). :-)
The Nationwide 20 questions are mostly naff and ageist as I can't remember some of the answers any more and my footie scarf is a bit of a giveaway. If Nationwide wanted to enhance security they should have strengthened their 3 digits from a 6 digit pass number to be longer a alphanumeric. But if hey if they want to be different ........
Jim A
Bitstring , from the wonderful person Gordon H said
No.
I always lie anyway .. the problem is keeping track of which lies you used for what. I mean how many people's first school really =wasCamelot, and mother's maiden name was Guinevere??
I use keepass.
"Hipster Dufus" wrote
You keep your passwords *where* ? ;-)
I sent them a message straight away suggesting they drop this scheme. I always have a problem with these type of security questions because I often don't have answers to the questions they asked.
Other daft questions (that I can remember) were:
- What hospital were you born in (Haven't they heard of homebirths?)
- What is your favourite colour (No good if you haven't got one or are colour blind).
- What was your first pet? (What if you never had one).
- What is your favourite flower? (Sexist - men don't like flowers ;-)
I had to make up answers because I was a hurry to log in. So now I won't be able to again!
M
-snip-
Ditto - but what half baked security system allows school for school, colour for colour, pet for pet etc?
MarkBR
They don't really want to know your school etc. It's stuff only you should know - what LTSB call "memorable information". Using dumbo things like that is putting *you* at risk.
Tiddy Ogg.
Indeed, its being memorable that's the issue. As someone has already suggested you can lie if you can remember. But forget your "lie" and you will be blocked even if you have correctly entered your any 1 of 3 existing memorable data and your 3 from 6 digits passnumber. If effect they are securing access with what for most people's question selection is a guessable fact or a forgettable lie.
Take a look at their Promise BTW. Spot the subtle difference between the articulations?
Promise: "We're so confident of our site's security that we take full responsibility for it: if you ever innocently suffer any fraud as a result of our Internet Banking service, we'll refund any money taken from your account. That's a promise."
The FAQ: "With our Internet Banking Promise, we cover members' losses where fraud is proven and the member has taken steps to keep passwords and security information secure."
When the previous Nationwide security system was introduced it was pretty much industry best practice. It's not the worst, some banks still require the entire password. Yes, it needs strengthening, but not this way.
Jim A
BeanSmart website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.