Mobile security is consistently reported as the biggest barrier to mobile commerce adoption. Consumers fear that hackers can break into their phones to access sensitive information. While the actual risk of phone viruses or network hacks is currently low, many defenses for mobile security are still untested. Phishing attacks through SMS links and social engineering techniques pose ongoing risks. Most organizations also do not adequately monitor for mobile attacks or focus on mobile user education. As more unsophisticated users adopt smartphones, security risks could grow without improved precautions. Continual security testing, multi-factor authentication, and mobile-optimized fraud detection are recommended.