[-] Aceticon@lemmy.dbzer0.com 1 points 1 week ago* (last edited 1 week ago)

Well, I haven't really made any large wire transfers to accounts outside the EU from that bank in over a decade so can't really confirm or deny.

I do know that in past experience with banks in general, the people checking the validity of suspicious transations (and large transfers to accounts outside the EU tend to fall into that classification given the prevalence of online scams from countries were the Law is a bit of a joke) will actually call you, or at least they did in the UK some years ago (pre-Brexit) which was the last time I had experience with something like that.

(At one point I also worked in a company that made Fraud Detection software).

Maybe they switched to SMS to save money, I don't know.

[-] Aceticon@lemmy.dbzer0.com 1 points 1 week ago* (last edited 1 week ago)

Ah, I see.

Your point is that the use of a secondary channel for a One Time Pass is still an insecure method versus the use of a time-based one time password (for example as generated in a mobile phone app or, even more secure, a dedicated device). Well, I did point out all the way back in my first post that SMS over GSM is insecure and SMS over GSM seems to be the secondary channel that all banks out there chose for their 2FA implementation.

So yeah, I agree with that.

Still, as I pointed out, challenge-response with smartchip signature is even safer (way harder to derive the key and the process can actually require the user to input elements that get added to the input challenge, such as the amount being paid on a transfer, so that the smartchip signs the whole thing and it all gets validated on the other side, which you can't do with TOTP). Also as I said, from my experience with my bank in The Netherlands, a bank using that system doesn't require 2FA, so clearly there is a bit more to the Revised Payment Systems Directive than a blanked requirement for dynamic linking.

[-] Aceticon@lemmy.dbzer0.com 0 points 1 week ago* (last edited 1 week ago)

It think you're confusing security (in terms of how easy it is to impersonate you to access your bank account) with privacy and the level of requirements on the user that go with it - the impact on banking security of the bank having your phone number is basically zero since generally lots individuals and companies who are far less security conscious than banks have that number.

That said, I think you make a good point (people shouldn't need a mobile phone to be able to use online banking and even if they do have one, they shouldn't need to provide it to the bank) and I agree with that point, though it's parallel to the point I'm making rather than going against it.

I certainly don't see how that collides with the last paragraph of my original post which is about how the original thread poster has problems working with banks which "require a separate device that looks like a calculator to use online banking" which is an element of the most secure method of all (which I described in my original post) and is not at all 2FA but something altogether different and hence does not require providing a person's phone to the bank. I mean, some banks might put 2FA on top of that challenge-response card authentication methods, but they're not required to do so in Europe (I know, because one of the banks in Europe with which I have an account uses that method and has no 2FA, whilst a different one has 2FA instead of that method) - as far as I know (not sure, though) banks in Europe are only forced to use 2FA if all they had before that for "security" was something even worse such as username + password authentication, because without those regulations plenty of banks would still be using said even worse method (certainly that was the case with my second bank, who back in the late 2010s still used ridiculously insecure online authentication and only started using 2FA because they were forced to)

[-] Aceticon@lemmy.dbzer0.com 1 points 1 week ago* (last edited 1 week ago)

Yeah, even though that unit is a thousandth of an inch, it's called mils rather than milli-inches.

[-] Aceticon@lemmy.dbzer0.com 3 points 1 week ago* (last edited 1 week ago)

Whilst I would be wary of saying AirBnB is the main cause (more likely it's a big one but not the only one), keep in mind that when realestate prices go up in major cities, that pushes out people who go to cheaper places, pushing prices up in those places which in turn might push some out from those places and into even cheaper places.

So housing bubbles centered in main cities do naturally spread out from there to places were the original causes of the bubble are not present.

[-] Aceticon@lemmy.dbzer0.com 4 points 1 week ago

The most defining trait of Sociopaths and Psychopaths is having no empathy, so for people like this the suffering of others, be it of their own making or not, has about as much emotional impact as the "suffering" of a leaf of lettuce when they eat it or of a piece of paper they crumple and thrown in the trashcan.

This also means that, amongst other things, they feel no guilt whatsoever (would you feel guilt from eating a leaf of lettuce?!) and will sleep like babies with the blood of thousands on their hands.

[-] Aceticon@lemmy.dbzer0.com 2 points 1 week ago

It's "mieren neuken".

A dutch person responding to my post already mentioned it.

Also, as somebody who has moved there first and then learned Dutch whilst living there, I do recommend just learning it over there since it's a much faster way to learn a language when you're there surrounded by native speakers, with lots of things written in Dutch around you and with Dutch TV and Radio whilst actually using it, than it is as just learning from the outside with little in the way of useful practice with the actual experts of the actual language.

Also you can easily get away with using English in The Netherlands whilst you're learning Dutch - in fact if you have a recognizable accent from an English-speaking country it's actually hard to get the Dutch to speak Dutch to you in the early and mid stage of learning their language since they tend to switch to English as most Dutch speak that very well.

[-] Aceticon@lemmy.dbzer0.com 1 points 1 week ago

That word isn't originally from Portuguese from Portugal (though it is recognized thanks to the prevalence of Brazilian soap operas in Portugal) so it carries no broader "social" meaning and isn't even commonly used there, so people wouldn't care if you used it in Portugal as it just sounds odd there.

If I understand the broader meaning subtleties of how it's used in Brazilian Portuguese correctly, using "garota" for a woman is a bit like using "chick" for a woman in British English, which whilst not an outright insult carries a bit of a demeaning vibe (not as bad as the used of "bitch" - as in "my bitch" - in American English, but the same kind of treating women as inferior).

This is probably because the original meaning of the word when not used for an adult woman (again, only in Brazilian Portuguese since it didn't exist in Portuguese from Portugal) is "young girl".

view more: ‹ prev next ›

Aceticon

joined 1 week ago