ABA Recommends Using Dedicated PC for Online Banking
Date: January 1 & 4, 2010
Synopsis: The American Bankers' Association (ABA) issued guidance to small and mid-sized businesses regarding how to protect themselves from the growing problem of unauthorized Automated Clearing House (ACH) transactions. Of special note is the recommendation that businesses use a dedicated PC that is never used for email or web browsing to conduct online banking transactions.
This particular bit of news seems to have gotten disproportionate attention. On one hand, people see it as "ABA tells home users to use a dedicated PC!" and on the other it's business as usual.
But, it's not business as usual - what ABA is doing is recommending a specific response to a deeper problem. The problem is not "online banking" or anything like it; what we're seeing here is an implicit statement that endpoint trust is finally beginning to matter, as cybercriminals are increasingly attacking the shoddy operating systems that everyone seems to use for general purposes.