View all newsletters
Receive our newsletter - data, insights and analysis delivered to you
  1. Technology
  2. Cybersecurity
October 20, 2016updated 13 Jan 2017 11:47am

The worst UK bank for secure online banking revealed: 11 UK banks ranked on security

As fraud and cyber-crime soar - which are the UK banks failing to protect customers?

By Ellie Burns

Consumer body Which? Has rated 11 UK banks based on the security of their online banking.

Which? Asked volunteers with current accounts at 11 high street banks to perform a series of tasks, with security experts then rating the customer-facing safeguards. In what may come as a shock to many a security expert, only five of the UK banks rated had two-factor authentication at login. Those banks were Lloyds Banking Group (Lloyds, Halifax, Bank of Scotland), Santander and TSB.

CBR takes a look at the rankings, with expert commentary on the failings exposed by the scores.

online banking ranking

The Worst

TSB only received the lowest ranking of 56%, ranking the worst for logging in. The log in of banks was rated on whether two-factor authentication was involved, as well as the other information required to log in and password complexity. Which? also looked at the process required for resetting a forgotten username or password.

online banking ranking

Gabriel Wilson from Rivington Information  Security said:“The scarcity of two factor authentication in the banking industry is down to weak guidance and lack of regulatory requirements. It’s also less expensive for banks to reimburse victims of online fraud, who have had their accounts compromised, than it is to implement two factor authentication. When these factors are combined with the sheer volume of existing regulations already in place, many not mandated, the focus of investment is not being used to adopt security best practices.

“However, two factor authentication is only part of the solution. Whilst it will reduce unauthorised access to customer accounts, it will not stop customers falling for scams. This remains a crucial issue, due to a lack of education and awareness of scam types and the temptation of financial reward.”

Content from our partners
How to engage in SAP monitoring effectively in an era of volatility
How to turn the evidence hackers leave behind against them
Why food manufacturers must pursue greater visibility and agility

Topics in this article: , ,
Websites in our network
Select and enter your corporate email address Tech Monitor's research, insight and analysis examines the frontiers of digital transformation to help tech leaders navigate the future. Our Changelog newsletter delivers our best work to your inbox every week.
  • CIO
  • CTO
  • CISO
  • CSO
  • CFO
  • CDO
  • CEO
  • Architect Founder
  • MD
  • Director
  • Manager
  • Other
Visit our privacy policy for more information about our services, how New Statesman Media Group may use, process and share your personal data, including information on your rights in respect of your personal data and how you can unsubscribe from future marketing communications. Our services are intended for corporate subscribers and you warrant that the email address submitted is your corporate email address.