The weak link? Your computer:
Not surprising - as some parts of the defense gets better, attackers look for softer targets. So what are the softest targets?
A next-generation Trojan recently discovered pilfering online bank accounts around the world kicks it up a notch by avoiding any behavior that would trigger a fraud alert and forging the victim's bank statement to cover its tracks.
The so-called URLZone Trojan doesn't just dupe users into giving up their online banking credentials like most banking Trojans do: Instead, it calls back to its command and control server for specific instructions on exactly how much to steal from the victim's bank account without raising any suspicion, and to which money mule account to send it the money. Then it forges the victim's on-screen bank statements so the person and bank don't see the unauthorized transaction.
1. Windows. This isn't a rant, but it's simply a fact that malware targets Windows. It's not that Mac or Linux isn't vulnerable too, but it (so far) doesn't pay for the Bad Guys to attack them, because there are a lot fewer of them, and they're harder to attack.
2. Internet Explorer 6 and 7. Lousy security. Use Firefox, or Opera, or even Internet Explorer 8 (it's security is a lot better).
Unfortunately, your antivirus scanner has been getting less effective for years - more specifically, the malware has been getting better at avoiding detection for years.
So what do you do? Well, you can give up online banking. You can switch to Mac or Linux. Or you can take your chances. Check your bank statements regularly, and make sure you're on good terms with your banker.