ICICI Bank gives unfettered access to your netbanking account to Google
- Thread starter Spacescreamer
- Start date
I don't think neither the author of this entry nor the author of the blog entry that he linked understand security. A hacker who can take over or spoof a google DNS and serve a malicious script can just as easily spoof an ICICI DNS.
These days, not having CORS is no more or no less safe than having it because there are numerous other attack vectors to think about. A person who is seriously paranoid enough to think that mere presence of a cross origin resource is a major risk for his privacy should just as stop using internet altogether for any thing at all and doing everything offline because that is what you I would expect them to be doing if they really come to know all the kind of other attack vectors that are possible and discovered each day.
These days, not having CORS is no more or no less safe than having it because there are numerous other attack vectors to think about. A person who is seriously paranoid enough to think that mere presence of a cross origin resource is a major risk for his privacy should just as stop using internet altogether for any thing at all and doing everything offline because that is what you I would expect them to be doing if they really come to know all the kind of other attack vectors that are possible and discovered each day.
Another clickbait article. And the best thing to do is to use Google DNS rather than the ones given by your ISP.
How about using one of these? https://www.ghostery.com/en/our-solutions/ghostery-add-on/
ICICI Bank
Recruit
Dear Members,
ICICI Bank would like to state that this article is ill founded and not based on facts. The Bank would like to strongly deny that Google or any third party tool can access any confidential customer level information from its website. ICICI Bank is in complete control over all points of access to customer data.
As a standard global practice, banks across the world use Google Analytics Premium services to understand generic behaviour of the users such as navigation patterns, browser types and page speeds among other things.
ICICI Bank would like to re-iterate that it operates with world class standards of information security and that our customer’s privacy is of utmost importance to us.
ICICI Bank would like to state that this article is ill founded and not based on facts. The Bank would like to strongly deny that Google or any third party tool can access any confidential customer level information from its website. ICICI Bank is in complete control over all points of access to customer data.
As a standard global practice, banks across the world use Google Analytics Premium services to understand generic behaviour of the users such as navigation patterns, browser types and page speeds among other things.
ICICI Bank would like to re-iterate that it operates with world class standards of information security and that our customer’s privacy is of utmost importance to us.