Home > slashdot > Major Security Holes Found In Mobile Bank Apps

Major Security Holes Found In Mobile Bank Apps

November 5th, 2010 11:11 admin Leave a comment Go to comments

NeverVotedBush writes with this excerpt from CNet: “A security firm disclosed holes today in mobile apps from Bank of America, USAA, Chase, Wells Fargo and TD Ameritrade, prompting a scramble by most of the companies to update the apps. … Specifically, viaForensics concluded that: the USAA’s Android app stored copies of Web pages a user visited on the phone; TD Ameritrade’s iPhone and Android apps were storing the user name in plain text on the phone; Wells Fargo’s Android app stored user name, password, and account data in plain text on the phone; Bank of America’s Android app saves a security question (used if a user was accessing the site from an unrecognized device) in plain text on the phone; and Chase’s iPhone app stores the username on a phone if the user chose that option, according to the report. Meanwhile, the iPhone apps from USAA, Bank of America, Wells Fargo, and Vanguard and PayPal’s Android app all passed the security tests and were found to be handling data securely.”

Source: Major Security Holes Found In Mobile Bank Apps

Related Articles:

  1. Do You Really Want Your Bank Following You Around All Day?
  2. Android Holes Allow Secret Installation of Apps
  3. Poking Holes In Samsung’s Android Security
  4. NFC in 2011: Wells Fargo Tests Mobile Payments in San Francisco
  5. Security Expert Warns of Android Browser Flaw
blog comments powered by Disqus
YOYOYOOYOYOYO