They did the same thing at Scotiabank in Canada last month. Lots of people were pretty annoyed about it.
4 posts • joined 19 Jan 2017
It's a slippery slope...
...first it starts with them trying to ban screen scraping and next thing you know, they're going to be telling you that doing MITM attacks is no longer an acceptable way to get data out of a Financial Institution's source system and have it magically transformed for use in a previously incompatible destination system at the customer's end.
This happened before... and will happen again.
I wrote to the CCIRC in August of 2016 and pointed out a continuing problem where there's holes in their security, but Bell Canada denies it and nobody in their right mind wishes to help Bell Canada resolve it. My first and only attempt to help Bell Canada plug a Titanic sized hole of leaking data was in 2013. Everyone I spoke to, always denied there was a problem so I'd fight to get escalated. So, I eventually showed Sheilagh Malloy (after she refuted my claim as impossible), who was head of the Office of the Privacy Ombudsman that some username and password combos. She came down on me like a tonne of bricks, so I swore I'd never help Bell Canada again, and the holes in their security remained open. These days, nobody tells Bell Canada when there is a problem, for fear of reprisals, and that leads to an environment where Bell Canada customers are open to being hacked over and over.