“Belgian banks SSL security is not in order ‘




A number of Belgian banks, including ING, the SSL security of its websites is not well organized, according to results of a scan through the online tool SSL Labs. Because of the sometimes substandard SSL implementations there is a risk that hackers can hijack sessions.

SSL Labs gives a score to the implementation of the SSL protocol: A + means that an https site is adequately protected, while an F rating indicates vulnerabilities. The security blogger Yeri Tiete all Belgian banks checked using the tool and suggests on this basis that the websites of Bpost, BNP Paribas, Hello !, ING Bank, Record Bank and Bank of Breda got a bad or very bad review. This websites are potentially insufficiently protected. For instance, some sites vulnerable to the bug Poodle , a vulnerability in the SSL 3.0 protocol.

Bpost and BNP Paribas Fortis have now their SSL configuration have put in order, but ING Record Bank, Hello and Bank of Breda would still score poorly. The major Dutch banks incidentally get better test: Rabobank, Knab, ING and Triodos Bank scored an A, while ABN AMRO, ASN Bank, Regions Bank, SNS Bank and Van Lanschot get assigned a B rating.


In: A Technology & Gadgets Asked By: [19085 Red Star Level]

Answer this Question

You must be Logged In to post an Answer.

Not a member yet? Sign Up Now »