For years I have used a VPN for my online banking, but this last week US Bank has pretty much disabled the ability to use one. They do not come out and say it. I just get a general error,
Looks like even the banks want to know everything about you, and try to (geo-)fence you in. It really sucks.
This is the paradox that really irritates me. I’ve encountered a number of services that do this and the reason they give for blocking VPN’s, is their security.
And yet the point of a (decent) VPN is my security. If I have options available to me, my thinking is that if the policies of businessX conflict with my security efforts, I’ll find another business.
I get this sort of thing all the time. Lazy security. I can usually find a server somewhere that will work so give it a try. A lot of time it is just that the server shows up as being the wrong country.
That being said, I still can’t get Ticketmaster to work with a VPN ;(
Banks may block VPNs to avoid:
Many banks require access from specific countries or regions to:
Blocking VPNs helps banks:
If a bank requires 2FA like mine than none of these reasons hold up.
2FA=you passed the test.
Seems VPN would be inconsequential (for the banks that require 2FA that is).
Tangential, I confess.
I understand that these are the reasons typically given to justify blocking VPN’s and such.
The mechanisms are hardly robust though. For example, most times, I can cycle my VPN endpoint several times, and it eventually starts to work. In other instances I’ve switched over to a TOR connection, and it works. It’s a pain for me as a legitimate user to have to do that, but if I were an attacker, that’s hardly a deterrent.
Accessing a website from a geolocation that appears legitimate, would be a trivial thing for a real threat.
I guess you’re going back to the counter. I for one won’t bank without a VPN for sure.
