...
...
Next Story

‘90% of mobile banking apps are vulnerable’: Study

Mobile banking may have made lives easier but think twice the next time you reach out for a smartphone to do a monetary transaction. Nearly 90% of all Indian mobile banking apps are vulnerable to security attacks and data leaks, a recent report by an IIT-Bombay start-up has found.

Updated on: Apr 18, 2015 01:39 AM IST
Hindustan Times | By , New Delhi
Prefer HTon Google
Advertisement

Mobile banking may have made lives easier but think twice the next time you reach out for a smartphone to do a monetary transaction. Nearly 90% of all Indian mobile banking apps are vulnerable to security attacks and data leaks, a recent report by an IIT-Bombay start-up has found.

Mobile security company Wegilant analysed 100 top mobile banking apps in India and the Asia Pacific region using an automated tool for scanning security loopholes and found 983 different kinds of vulnerabilities in 70 of the apps. Out of these, 29 of 33 Indian banking apps were found to be exposed to spoofing and data leakage, indicating the insecurity of financial data.

“We found multiple security loopholes, even in premium apps. Most of the mobile banking apps failed and many didn’t employ even the basic security checks expected. The communication between the apps and their servers is still in the unencrypted format i.e. in HTTP instead of HTTPS,” said Toshendra Sharma, founder of Wegilant.

Indian Bank Association chairman TM Bhasin, however, refuted the charges, saying all banks took a lot of precautions and conducted several levels of checks.

India has witnessed explosive growth in the number of mobile phone subscription in the past few years and is poised to cross the one billion mark by the end of the year.

 
ABOUT THE AUTHOR
Shradha Chettri

Shradha Chettri was part of Hindustan Times’ nationwide network of correspondents that brings news, analysis and information to its readers. She no longer works with the Hindustan Times.

SHARE THIS ARTICLE ON
Hindustantimes wants to start sending you push notifications. Click allow to subscribe