Mobile banking apps could be major security threat, says FBI

News
By published

Increased use of mobile banking apps makes them a perfect target for cybercriminals

Banking
(Image credit: Shutterstock)

Users of mobile banking apps will be increasingly targeted by cybercriminals attempting to steal their credentials and take over their accounts according to a new alert from the FBI.

The agency's Internet Crime Complaint Center (IC3) published the alert which warns that increased use of mobile banking apps during the pandemic could lead to more exploitation attempts targeting their users.

As banks were closed while US cities were in lockdown, Americans relied on mobile banking apps to make payments, transfer funds and cash checks. In fact, studies of US financial data indicates a 50 percent surge in mobile banking use since the beginning of this year.

Fake apps and banking trojans

The FBI believes that cybercriminals will use fake banking apps and banking trojans among other techniques to target mobile banking customers.

Banking trojans are malicious programs that disguise themselves as other apps such as games or tools. However, when a user launches a legitimate banking app, the trojan, which has been lying dormant on their device, is triggered and creates a fake version of a bank's login page and overlays it on top of the legitimate app.  To avoid detection, the trojan passes the user to the real banking app after they enter their credentials into the false login page.

Cybercriminals also create and circulate fake banking apps online in order to steal users' credentials. These apps are designed to impersonate legitimate apps from major financial institutions. They also provide an error message after a user tries to login and use smartphone permission requests to obtain and bypass security codes sent to users via text.

To prevent falling victim to fake apps and banking trojans, the FBI recommends that users only install mobile banking apps from official app stores such as the Google Play Store or Apple App Store, enable two-factor authentication (2FA) and use strong and unique passwords for their banking accounts.

Via BleepingComputer

Anthony Spadafora
Anthony Spadafora

After working with the TechRadar Pro team for the last several years, Anthony is now the security and networking editor at Tom’s Guide where he covers everything from data breaches and ransomware gangs to the best way to cover your whole home or business with Wi-Fi. When not writing, you can find him tinkering with PCs and game consoles, managing cables and upgrading his smart home. 

Latest in Security
ransomware avast
One of the most powerful ransomware hacks around has been cracked using some serious GPU power
person at a computer
Many workers are overconfident at spotting phishing attacks
A fish hook is lying across a computer keyboard, representing a phishing attack on a computer system
Microsoft 365 accounts are under attack from new malware spoofing popular work apps
Data Breach
Thousands of healthcare records exposed online, including private patient information
China
Juniper patches security flaws which could have let hackers take over your router
Representational image depecting cybersecurity protection
GitLab has patched a host of worrying security issues
Latest in News
Seagate's new Genshin Impact Limited Edition SSD on a desk.
I didn't know an SSD could be cute until I saw Seagate's new Genshin Impact limited edition
European Union technical background
EU tech companies push for digital sovereignty, reducing reliance on US and others
ransomware avast
One of the most powerful ransomware hacks around has been cracked using some serious GPU power
Star Wars Knights of the Old Republic
Knights of the Old Republic remake developer Saber Interactive states all its projects are 'still in development'
google nest
Google is slowly phasing out its Assistant helper to make room for Gemini's reign in smartphones - here’s how it’s doing the same for smart home devices
Renault 5 Turbo 3E
Renault unveils its wildest EV to date and it comes with in-wheel motors and a rally-style vertical handbrake for drifting
More about security
ransomware avast

One of the most powerful ransomware hacks around has been cracked using some serious GPU power
A fish hook is lying across a computer keyboard, representing a phishing attack on a computer system

Microsoft 365 accounts are under attack from new malware spoofing popular work apps
Sakata in Demon City holds a large cleaver-like weapon

Demon City on Netflix is Japan's answer to John Wick with a dash of Oldboy, and it rocks
See more latest
Most Popular
ransomware avast
One of the most powerful ransomware hacks around has been cracked using some serious GPU power
A fish hook is lying across a computer keyboard, representing a phishing attack on a computer system
Microsoft 365 accounts are under attack from new malware spoofing popular work apps
Snap Spectacles 5
Latest Snap Spectacles update teases an exciting AR future that I can't wait for
Renault 5 Turbo 3E
Renault unveils its wildest EV to date and it comes with in-wheel motors and a rally-style vertical handbrake for drifting
3D version of the Adobe logo
Adobe Summit 2025 - all the news and updates as it happens
google nest
Google is slowly phasing out its Assistant helper to make room for Gemini's reign in smartphones - here’s how it’s doing the same for smart home devices
European Union technical background
EU tech companies push for digital sovereignty, reducing reliance on US and others
Gemini on a mobile phone.
Worryingly, Google Gemini’s new AI image generation features can be used to remove watermarks from images and I'm concerned
Star Wars Knights of the Old Republic
Knights of the Old Republic remake developer Saber Interactive states all its projects are 'still in development'
Percy walks into a forest camp in Percy Jackson and the Olympians' Disney Plus series
Disney+ renews Percy Jackson and the Olympians for season 3, unleashing an epic new odyssey based on the The Titan's Curse