"I’m about to with my bank as long as online banking fraud (phishing, ID thefft) still poses a huge risk. Get a clue:
http://www.marketwatch.com/news/story/story.aspx?guid=%7BFDA16987%2DEB36%2D4FC3%2DB62C%2 D8DD6AFD3E147%7D&siteid=rss
"

“Today, a criminal program can be sitting inside your browser when you log on.”

Well, that's easy enough to avoid. Don't install software that isn't trustworthy. For example, Windows. Or MSIE.

One of my banks recently came up with some “security” feature. I now have to use an on-screen letter-substitution cipher to enter my PIN. UGH. PITA. Come on, I'm running Iceweasel/Firefox on Linux here, I don't have any key loggers installed.

And gee, wouldn't someone just change their key logger to take a screenshot too? Nah... Criminals can't adapt to worthless security measures, that'd like be a CRIME or something.

Oh, and if your browser is compromised, they can — and already do! — just use your normally authenticated session, with whatever magic security devices chosen, to put in their fraudulent transactions...