Mobile banking apps insecure

 Article for: everyone interested in voting technology 

	Difficulty: moderate 

	Importance: If you are interested in secure accurate voting 

The Aite Group did an analysis of the security of the mobile apps for 30 financial institutions. Alissa Knight the head investigator downloaded apps from 8 financial sectors:

Retail banking, credit cards, mobile payments, cryptographer, HSA, retail brokerage, health insurance, and auto insurance. She thought the results would be bad. They were worse.

I will not go into details, but someone's nephew seems to have written these apps. Someone who had never took a cyber security course. 29 of the 30 apps didn't protect the apps code. 80% had weak encryption or implemented decent encryption wrong. 70% had insecure random number generators so even if they had good encryption techniques it wouldn't help. Some even allowed attackers into the bank's data center.

Recommendations

If you don't need your mobile banking or credit card or payment app, remove it from your phone. I did.
If you need it, see if you can figure out a way to not need it.
If you must use it, try to have only a few apps on your phone, because any of them could access your banking information.

Keeping clients' computers safe and profitable for over 30 years

Home Forms About Current Newsletter subscribe Search All Articles Browse by Category Security Internet Mobile Business Hardware Fun		Mobile banking apps insecure Article for: everyone interested in voting technology Difficulty: moderate Importance: If you are interested in secure accurate voting The Aite Group did an analysis of the security of the mobile apps for 30 financial institutions. Alissa Knight the head investigator downloaded apps from 8 financial sectors: Retail banking, credit cards, mobile payments, cryptographer, HSA, retail brokerage, health insurance, and auto insurance. She thought the results would be bad. They were worse. I will not go into details, but someone's nephew seems to have written these apps. Someone who had never took a cyber security course. 29 of the 30 apps didn't protect the apps code. 80% had weak encryption or implemented decent encryption wrong. 70% had insecure random number generators so even if they had good encryption techniques it wouldn't help. Some even allowed attackers into the bank's data center. Recommendations If you don't need your mobile banking or credit card or payment app, remove it from your phone. I did. If you need it, see if you can figure out a way to not need it. If you must use it, try to have only a few apps on your phone, because any of them could access your banking information. Further Reading Report summary ZDNet report Computer World report Date: May 2019 This article is licensed under a Creative Commons Attribution-NoDerivs 3.0 Unported License.
		I attempt to provide reliable information, but make no warranty as to the accuracy or safety of these articles. I disclaim all legal responsibility for what following these instructions may do. Follow my advice at your own risk

Keeping clients' computers safe and profitable for over 30 years

Mobile banking apps insecure

Recommendations

Further Reading