Personal computing discussed
Ryu Connor wrote:That being said, I start to draw the line at security programs that are excited about the fact they are essentially rootkits. Again - it might work great - but you now have an extra variable in terms of support when evaluating the abilty of that branch to migrate to updated or new software. To be more succinct, who knows how much software compatibility that tool will break. This reads ripe for nasty interactions with OS patches and service packs especially. Change management is a hard job, this doesn't read like software that gonna do you any favors.
UberGerbil wrote:Are you saying this bank might be requiring its regular customers to install this on their own PCs in order to do online banking with them? There aren't too many things that would get me off my lazy ass to switch banks, but that certainly would do it.
UberGerbil wrote:Are you saying this bank might be requiring its regular customers to install this on their own PCs in order to do online banking with them? There aren't too many things that would get me off my lazy ass to switch banks, but that certainly would do it.
StuG wrote:I'm not gonna lie. I read the title and thought that you were making a mockery of Tech Report, and expected to hear some rant about how that name was relevant to your current disliking of the website.
Captain Ned wrote:StuG wrote:I'm not gonna lie. I read the title and thought that you were making a mockery of Tech Report, and expected to hear some rant about how that name was relevant to your current disliking of the website.
Que?
[/Manuel]
StuG wrote:I mean it was obvious once I get into the thread that it wasn't so.
Ryu Connor wrote:The Unrestricted access level simply means the program runs with the rights of the user. This is not a smoking gun of misdeed.
One of the rules of SRP allows for controlling the use of programs through a Certificate. This too is not a smoking gun of misdeed.
This does not mean that the program is not vile. The above just isn't evidence to prove it.
Scrotos wrote:Wow, really? BoA, HSBC, buncha banks are pushing this on customers? Good luck in your investigation, Ned, I'm interested in that info for advising our customer base as well.
Captain Ned wrote:Does anyone here know about this thing, or has done any forensics on it?
Trusteer Rapport is a bit of software pushed out by banks to secure their on-line banking platforms. It claims to totally prevent trojan and man-in-the-middle attacks as well as claiming that it buries itself so far in the OS kernel that it can outwit keyloggers. My cursory 'Net research turns up the usual crowd of complainers, but in this case with some justification. it does not appear in Add/Remove Programs, it sets the Temporary Internet Files folder/contents to "hidden" and "read-only", and it appears to amass a pile of data in Docs & Settings\%User%\Application Data. From a regulatory perspective these behaviors worry me, and one of my institutions is using this software.
Thanks in advance.
Ushio01 wrote:I have it on my computer and it does appear in Add/Remove Programs. The only thing it seems to do is stop me leaving the bank website if I have a password in copy and paste.
Captain Ned wrote:Ushio01 wrote:I have it on my computer and it does appear in Add/Remove Programs. The only thing it seems to do is stop me leaving the bank website if I have a password in copy and paste.
Whereas in the install we found here in the office (XPSP3) it did not.
thegleek wrote:Unless you're an online banking customer with BoA or some other institution that mandates its use, you probably (hopefully) don't have it.What is it called exactly under add/remove programs? Am I looking for "Trusteer Rapport" or some other company? I can't seem to find this anywhere on my Win7 x64 computer.
UberGerbil wrote:Will definitely be keeping an eye out for this in the future. If your antimalware tools can't see it, they sure can't see if it's infected. Have you tried looking for it with rootkit revelear (or similar)?thegleek wrote:Unless you're an online banking customer with BoA or some other institution that mandates its use, you probably (hopefully) don't have it.What is it called exactly under add/remove programs? Am I looking for "Trusteer Rapport" or some other company? I can't seem to find this anywhere on my Win7 x64 computer.