The study takes a closer look at the technique of adding a personalized image to a user’s banking login screen. The idea is that the image will help protect them from password phishing attempts since they will notice when their image is missing or wrong. However, the study put 60 people in a room and asked them to login to their online banking web sites, and 58 of them proceeded to login even though the personalized images were missing. The study leaves questions about the usefulness of such measures, but the real message here should be that users who are aware of the existing security measures are far more likely to benefit from their protection.

You must be logged in to post a comment.