Archive Links

Consumer Archive
CU System Archive
Market Archive
Products Archive
Washington Archive

News Now

CU System
Social network mobile apps flunk security test
NEW YORK (8/11/11)--About 25% of mobile banking programs received a “fail” rating for security in a study conducted by viaForensics. The failures mostly occurred because testers could capture a user password or other sensitive user data from a user’s mobile device (American BankerAug. 8). In some cases, the apps stored a security personal identification number or a user name and password. Testers also were able to recover payment history, partial credit card numbers and other transaction-related data. About 31% of mobile banking apps received a “warn” grade because a user name or other app data were present, but the information was not considered a significant risk to the user. The other 44% of mobile banking apps passed the test. Unencrypted passwords are the major source of risk for financial institutions, according to Andrew Hoog, chief investigative officer at viaForensics. Hoog noted users tend to store their passwords on their devices and carry the devices with them. The devices usually are online--susceptible to hackers--and outside of the financial institution’s control, Hoog said. The report also said that of social networking or retail mobile apps tested, none passed.


RSS print
News Now LiveWire
Large CU stress testing on the agenda for the April @theNCUA open meeting http://t.co/2TUcnmCmPi
1 Day ago
#FinancialLiteracyMonth Test your college financial aid knowledge @nasfaa http://t.co/xgrDmHaw8W
1 Day ago
Join @theNCUA #NCUAchat with @KenWortheyJr on April 23 from 11am to 12pm EST http://t.co/TnNmfFh4Nl #FinancialLiteracyMonth
1 Day ago
Maine's patent troll bill has become law. Read more in Monday in @NewsNowLiveWire
38 minutes ago
Wash. DFI discusses serving legal marijuana businesses with @NWCUA http://t.co/3kw79HJUYF
44 minutes ago