Tweet
Security software designed to prevent bank fraud has been fooled by a BBC reporter and his twin.
BBC Click reporter Dan Simmons set up an HSBC account and signed up to the bank's voice ID authentication service. HSBC says the system is secure because each person's voice is "unique". But the bank let Dan Simmons' non-identical twin, Joe, access the account via the telephone after he mimicked his brother's voice. The bank said it would "review" ways to make the ID system more sensitive following the BBC investigation.
'Really alarming'
HSBC introduced the voice-based security in 2016, saying it measured 100 different characteristics of the human voice to verify a user's identity. Customers simply give their account details and date of birth and then say: "My voice is my password". Although the breach did not allow Joe Simmons to withdraw money, he was able to access balances and recent transactions, and was offered the chance to transfer money between accounts.
Read more here
Previous Blog News: Feb 2016:
The death of passwords: HSBC launches voice and fingerprint ID LINK
- Hi & Welcome to the AAD Consumer Forum
We're a FREE consumer debt and legal forum offering help, support and debate in many areas of day-to-day life. You will need to Register a Free Account before you can join in with the discussion and contribute with your own posts. Remember to also check out the FAQ's so you can get to grips with how the forum works ready to start posting your new topics. Read about the new GDPR 2018 Rules and how it affects you as a member of AAD.