|
|
|
|
|
|
by Retric
2958 days ago
|
|
|
Banks should notice a new IP/browser and then force 2 factor authentication before showing the image. ex: Sending a text. Which would make Users far more suspicious as rather than a normal login they see one of those "we don't recognize your browser" screens. The bank can also track the 3rd party connection to their servers making this more tricky to get away with. So, while not fool proof done correctly it is actually very useful. However, a website would not have access to the browsers image unless the machine was already compromised. |
|
|