Mobile banking trends and hidden risks
Posted on 25 September 2012.
While mobile banking apps are growing quickly in popularity, 68 percent of smartphone owners who have not yet adopted these apps are holding back due to security fears, while only 12 percent believe that the effort of downloading and installing such apps doesnít justify the convenience, according to Metaforic.

By contrast, only 14 percent of those surveyed said that security concerns were preventing them from using PC-based online banking.

These consumers could be right to worry. Juniper Research finds that Android malware is up more than 3,325 percent, and another study shows 92 percent of the top iPhone apps have been compromised, indicating that the mobile environment is potentially more dangerous than the classic PC environment.

Even with password protection, an app can still potentially be compromised via repackaging, targeted attacks via drive-by downloads, man-in-the-middle attacks, keyloggers, and more. In addition, most consumers do not run any extra security processes on their smartphones, such as anti-virus protection.

Even if they do, a recent study shows that these mobile protections catch only 20-80 percent [NCSU-DSC] of such infections, compared to worst case 90 percent protection on the PC [AV-TEST].

ďAs the convenience of smartphones fuels the surging popularity of mobile banking apps, itís clear that the average user may not understand the risks involved, and is not taking the security steps needed to protect their mobile devices,Ē said Dan Stickel, CEO of Metaforic. ďUnless mobile apps are immunized against unwanted modifications, both users and banks face potentially staggering financial risks. Itís just a matter of time until a major breach occurs.Ē

In fact, Gartner has now reported the first publicly announced banking app losses, and it seems likely that compromises will rise along with the popularity and capabilities of these mobile apps. In June, McAfee reported $78M+ stolen via automated back-end servers targeting peopleís online accounts and this is just the tip of the iceberg.


New Zeus variant targets users of 150 banks

Posted on 19 December 2014.  |  A new variant of the infamous Zeus banking and information-stealing Trojan has been created to target the users of over 150 different banks and 20 payment systems in 15 countries, including the UK, the US, Russia, Spain and Japan.

Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.

Daily digest

Receive a daily digest of the latest security news.

Mon, Dec 22nd