Let's assume for a second that this wasn't a hacker, but a malicious employee. I... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		run4yourlives on June 8, 2011 \| parent \| context \| favorite \| on: Bank Not Responsible for Letting Hackers Steal $30... Let's assume for a second that this wasn't a hacker, but a malicious employee. In your world is the bank still liable for this?

tptacek on June 8, 2011 [–]

No, because even using countermeasures that meet or exceed industry best practices, a malicious employee could be expected to gain access to the account. Unlike this case, the internal fraud would be entirely outside the bank's control.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact