[Owasp-ireland] Banks scramble to fix mobile app security flaws

fabio.e.cerullo at aib.ie fabio.e.cerullo at aib.ie
Mon Nov 8 06:57:44 EST 2010


A number of top financial companies and banks such as Wells Fargo & Co., 
Bank of America Corp. and USAA are rushing out updates to fix security 
flaws in wireless banking applications that could allow a computer 
criminal to obtain sensitive data like usernames, passwords and financial 
information.

The central problem is that the apps, which run on Apple Inc.'s iPhone and 
Android-based devices from Google Inc., are storing a user's information 
in the memory of a cellphone, a basic lapse that the security researcher 
who found the flaws said could allow a cybercriminal to access a person's 
financial accounts.

Read more: 
http://online.wsj.com/article/SB10001424052748703805704575594581203248658.html?mod=googlenews_wsj

Thanks,

Fabio 

******************************************************
This document is strictly confidential and is intended for use by the addressee unless otherwise indicated.

This email has been scanned by an external email security system.

Allied Irish Banks

AIB and AIB Group are registered business names of Allied Irish Banks p.l.c. Allied Irish Banks, p.l.c. is regulated by the Financial Regulator.  Registered Office: Bankcentre, Ballsbridge, Dublin 4. Tel: + 353 1 6600311; Registered in Ireland: Registered No. 24173

Please consider the environment before printing this e-mail. 
******************************************************
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-ireland/attachments/20101108/efffa7d7/attachment.html 


More information about the Owasp-ireland mailing list