SlideShare a Scribd company logo

Security Report of Top 100 Mobile Banking Apps - APAC

Appknox
Appknox

A research conducted with 106 mobile banking apps across 14 different threat scenarios that revealed a total of 462 vulnerabilities.

Technology
1 of 16
Security Report of Top 100 Mobile Banking Apps -APAC
EXECUTIVE SUMMARY 3 DIGITALIZATION AND MOBILIZATION 4 ADOPTING MOBILITY IN BANKING 5 5 TRENDS TO WATCH OUT FOR 6 THE BILLION DOLLAR BANK HEIST 7 RESEARCH METHODOLOGY 8 THREAT SCENARIOS 9 OUR FINDINGS 10 THREAT SEVERITY LEVEL 11 TOP THREATS 12 CONCLUSION 13 CONTENT Mobile Banking in APAC | 2
Poised at the center of the world’s fastest growing and soon-to be-largest wealth markets, the potential upside for Asia-Pacific’s private banks and wealth managers is clear. Asia-Pacific is the highest growth region for private banks and is soon expected to overtake North America as the largest market for High Networth Individuals (HNIs) (Customers with more than $1 million in investable assets). With tremendous pressure from both stakeholders, investors and rivalry from other financial institutions, banks are now being forced to go down the path of innovation and technological change to ensure sustainability. Most Asian banks have been seen to adapt well to change; however with the opportunity that comes with change, also lays major security concerns. Appknox’s study with some of Asia’s top mobile banking players covers: › How banks in Asia are innovating to keep up with trending consumer demands. › How mobile will be a central influencing factor in facilitating change in banking. › Key Trends Asian banks are experiencing and adopting. › A bank heist that forever changed our view on hackers. › Results obtained from the study conducted with over 100 top mobile banking providers in Asia. › A threat & vulnerability overview found with the 100 banks. We foresee that banks able to adapt, embrace and restructure their digital and in particular their mobile strategy to the changing dynamics of the banking ecosystem, will be the ones in authoritative positions to reap the benefits from APAC’s predicted growth trend. “By 2018, the Asia Pacific region is expected to make up more than one-third of global wealth, with its private wealth forecast to reach $76.9 trillion.” EXECUTIVE SUMMARY Mobile Banking in APAC | 3
Banks are still struggling to devise the perfect cross-channel experiences for their customers, experiences that take advantage of digitization to provide customers with targeted just-in-time product or service information in an effective and seamless way. - McKinsey As ideal as it seems, changing core banking systems to become truly digital is not an easy task. However, traditional banks have to watch out against new and nimble companies that are looking to enter the banking market with newer technologies such as mobile, social pay, e-wallets etc. to penetrate into the financial market space. Embracing digital banking strategy - Best practices: › Be quick to adopt digital strategies to cope with the new age non-banking competitors. › Leverage advanced analytics and Big Data to understand how customers take decision in their digital journey. › Go mobile first and accept mobile payments to provide a retail-like experience to banking customers. › Expedite delivery of banking services through digital. Rise of DIGITALIZATION AND MOBILIZATION in Banking Mobile Banking in APAC | 4
Are you aware of your apps vulnerabilities? Find out where you stand using Appknox’s free Appgrader Grade Now
Mobile banking has existed for close to 15 years. However with the recent boom in the smartphone market, mobile banking has turned from convenience to a vital tool. Bankers have been talking about using cell phones as a channel for consumer banking almost as long as energy companies have been trying to make solar power affordable, but it has taken a confluence of factors to make mobile banking a reality. Why banks should go Mobile... › Rapid adoption of smartphones- 2 billion consumers worldwide to get smart(phones) by 2016. › Shifts in consumer preferences- Like automated teller machines (ATMs) and online banking services, smartphones give consumers the power to perform actions like real time payment, instant generation of bank statements, credit card payment and many other such features. › A significant capability build-out The Global Mobile Banking Report 2015 claims that the adoption of mobile technologies for banking has reached 60% to 70% of the total banking population in India and China which is higher that the United States and Europe. › Product and services innovation The mobile channel allows banks to offer customers features they cannot find online, such as remote check deposit, person-to-person (P2P) payments, and real-time fraud notification. - Deloitte ADOPTING MOBILITY IN BANKING Mobile Banking in APAC | 5
- Cisco Mobile is already the largest banking channel for the majority of banks by volume of transactions. -KPMG The Cisco Visual Networking Index Global Mobile Data Traffic Forecast (Cisco VNI) for 2014 to 2019 indicates there will be 5.3 billion mobile users and 11.5 billion mobile-ready devices, including 8.3 billion personal mobile devices and 3.2 billion M2M connections by 2019. Mobile adoption rates are highest in so-called developing countries – reaching 60-70% in China and India – rather than developed nations, such as the US, Canada and the UK. -KPMG Innovation will be the focus for APAC banks in 2015. Many of them now allocate up to 25% of their IT budgets on emerging technologies designed to improve operations and services. -IDC Financial In addition to rapidly-growing consumer use of mobile banking and payments, there has also been a clear global shift towards interbank real-time payments. -IDC Financial Another popular APAC banking 2015 trend is the continued growth of global RMB payments. In November 2014, the RMB reached a new milestone when it overtook the Canadian and Australian dollar as a global payments currency. -IDC Financial “By 2020an estimated 50 billion devices will be connected to the internet.” 5 TRENDS TO WATCH OUT FOR Mobile Banking in APAC | 6
$1B 100 Banks 30 Countries 2 Years 1. Infection 2. Harvesting Intelligence Intercepting the clerk’s screens. 3. Mimicking Staff How the money was stolen? Carbanak backdoor sent as an attach- ment. Email with exploits Credentials Stolen 100’s of machines infected in search of the admin pc Bank Employee Online-Banking Money was transferred to Fraudsters’ account E-payment Systems Money was transferred to Banks in China and the US Inflating Account Balances The extra funds were pocketed via a fraudulent transaction. Controlling ATM’s Orders to disperse cash at a predetermined time. Admin Rec Hacker ‘ A multinational gang of cybercriminals infiltrated more than 100 banks across 30 countries and made off with up to one billion dollars over a period of roughly two years. ’ THE BILLION DOLLAR BANK HEIST Mobile Banking in APAC | 7 - Kaspersky
See how Appknox helps detect and resolve security issues in your app Book a free 20 minute session with our security researchers Request Demo
This research consists of mobile applications based on Android and available for use in the APAC region of the Google Play Store. Only Android applications were chosen to maintain consistency in comparison and analysis. Why we chose banking? Banking has always been central in our daily lives. Banks have also always had the reputation of being an early adopter of technology, often innovators themselves. In a world where mobile phones are the centre of technological innovation directly impacting the lives of many, it was essential to study how security for banking would cope with this magnitude of technological innovation and change. How did we choose the apps? We chose APAC to be our region of study, picking from 106 banking apps that work and operate in this region and analyzed their Android applications across 14 threat scenarios. There was no bias in selecting the apps. These include almost all the banks that offer their services via a mobile app in this region. RESEARCH METHODOLOGY Mobile Banking in APAC | 8
106banking apps 14threat scenarios Hostnameverifier Allows all Hostname Broken Trust Manager for SSL Improper Content Provider Permissions Insecure SSL Socket Factory Implemented Broken Hostnameverifier for SSL Remote Code Execution Through Javascript Interface Application Logs Derived Crypto Keys Unprotected Services Insufficient Transport Layer Protection Application Debug Enabled Improper Custom Permission Unused Permissions App Extends Web View Client THREAT SCENARIOS Mobile Banking in APAC | 9
85%of the mobile banking apps failed basic security check! 50%of apps were found to have atleast 4-6 loopholes in them! 106mobile banking apps were scanned 15% 85% 0-3 4-6 7-9 Number of Vulnerabilities 34% 54% 12% OUR FINDINGS Mobile Banking in APAC | 10
67% of the threats detected were of HIGH SEVERITY. 24%low severity 9%medium severity 67%high severity THREAT SEVERITY LEVEL Mobile Banking in APAC | 11
Top5threats “74%of the apps were diagnosed with the top 5 threats.” Broken Trust Manager for SSL Remote Code Execution Through Javascript Interface Unused Permissions Other Threats Insufficient Transport Layer Protec- tion Derived CryptoKeys 24% 13% 15% 10% 12% 26% TOP THREATS Mobile Banking in APAC | 12
Along with using and reinventing old hacking techniques, cyber criminals are constantly exploring newer sophisticated channels to exploit financial institutions. The recent explosion of mobile app markets has paved a way for hackers to exploit new hunting grounds. According to a study conducted by PWC, 45% of Financial Services organizations have suffered economic crime, compared to only 34% across all other industries. Security threats are constantly evolving... We put 106 mobile banking apps to the test, across 14 different threat scenarios. Our study revealed that 85% of mobile banking apps were vulnerable to high, medium and low security loopholes. Over 50% of apps were found to have at least 4 to 6 bugs in them. We also found that more than 74% of apps were diagnosed with the top 5 threats on our checklist, making them extremely vulnerable to attacks. Standard Security Measures can only take you so far… We’ve observed over the years, that despite security measures being ramped up, hackers have still found their way around. It is evident through this study that threats are still prevalent in several mobile banking apps. Mobile apps have weaved their way into being a key component in digital banking strategy. It is vital that banks pay equal importance to both innovation as well as security to ensure maximum customer satisfaction. 462threats found in a total of 106 apps across 14 threat scenarios. CONCLUSION Mobile Banking in APAC | 13
Copyright © 2015 by Appknox (XYSec Labs Pte. Ltd.) Appknox is a cloud-based mobile app security solution that helps protect enterprises by detecting security loopholes with suggestions to fix them. Appknox is supported by Microsoft and has been recognised as one of the thought leaders in the information security space. They have won multiple awards like NASSCOM Emerge 50, GMIC Top 3 Startups, Winner of HOT 100 Technology Award, CIOReview’s Top Enterprise Startup to Watch Out For, to name a few. All rights reserved. No part of this publication may be reproduced, distributed, or transmitted in any form or by any means, including photocopying, recording, or other electronic or mechanical methods, without the prior written permission of the publisher, except in the case of brief quotations embodied in critical reviews and certain other noncommercial uses permitted by copyright law. For permission requests, write to the publisher, addressed “Attention: Permissions Coordinator,” at: Prateek Panda Chief Marketing Officer Appknox (XYSec Labs Pte. Ltd.) prateek@appknox.com www.appknox.com

Recommended

The mobile money movement by mpay connect dec 2010 innovations publication ...
The mobile money movement by mpay connect dec 2010 innovations publication ...The mobile money movement by mpay connect dec 2010 innovations publication ...
The mobile money movement by mpay connect dec 2010 innovations publication ...Menekse Gencer
 
Mobile Banking: The New American Addiction
Mobile Banking: The New American AddictionMobile Banking: The New American Addiction
Mobile Banking: The New American AddictionNTT DATA Consulting, Inc.
 
The mobile banking and payment revolution1 b37fc319 e15f-46c8-b2f9-c0d4c8327285
The mobile banking and payment revolution1 b37fc319 e15f-46c8-b2f9-c0d4c8327285The mobile banking and payment revolution1 b37fc319 e15f-46c8-b2f9-c0d4c8327285
The mobile banking and payment revolution1 b37fc319 e15f-46c8-b2f9-c0d4c8327285Sumit Roy
 
Information on mPay Connect Consulting
Information on mPay Connect ConsultingInformation on mPay Connect Consulting
Information on mPay Connect ConsultingMenekse Gencer
 
FinTech Industry Report 2016
FinTech Industry Report 2016FinTech Industry Report 2016
FinTech Industry Report 2016Bernard Moon
 
The future of mobile banking
The future of mobile bankingThe future of mobile banking
The future of mobile bankingCuscal
 
Sub saharan african fintech startup radar
Sub saharan african fintech startup radarSub saharan african fintech startup radar
Sub saharan african fintech startup radarLacuna Innovation
 
trendwatching.com's PERFECT PAYMENTS
trendwatching.com's PERFECT PAYMENTStrendwatching.com's PERFECT PAYMENTS
trendwatching.com's PERFECT PAYMENTSTrendWatching
 

Recommended

The mobile money movement by mpay connect dec 2010 innovations publication ...
The mobile money movement by mpay connect dec 2010 innovations publication ...The mobile money movement by mpay connect dec 2010 innovations publication ...
The mobile money movement by mpay connect dec 2010 innovations publication ...Menekse Gencer
 
Mobile Banking: The New American Addiction
Mobile Banking: The New American AddictionMobile Banking: The New American Addiction
Mobile Banking: The New American AddictionNTT DATA Consulting, Inc.
 
The mobile banking and payment revolution1 b37fc319 e15f-46c8-b2f9-c0d4c8327285
The mobile banking and payment revolution1 b37fc319 e15f-46c8-b2f9-c0d4c8327285The mobile banking and payment revolution1 b37fc319 e15f-46c8-b2f9-c0d4c8327285
The mobile banking and payment revolution1 b37fc319 e15f-46c8-b2f9-c0d4c8327285Sumit Roy
 
Information on mPay Connect Consulting
Information on mPay Connect ConsultingInformation on mPay Connect Consulting
Information on mPay Connect ConsultingMenekse Gencer
 
FinTech Industry Report 2016
FinTech Industry Report 2016FinTech Industry Report 2016
FinTech Industry Report 2016Bernard Moon
 
The future of mobile banking
The future of mobile bankingThe future of mobile banking
The future of mobile bankingCuscal
 
Sub saharan african fintech startup radar
Sub saharan african fintech startup radarSub saharan african fintech startup radar
Sub saharan african fintech startup radarLacuna Innovation
 
trendwatching.com's PERFECT PAYMENTS
trendwatching.com's PERFECT PAYMENTStrendwatching.com's PERFECT PAYMENTS
trendwatching.com's PERFECT PAYMENTSTrendWatching
 
Banking On Mobile - Getting Ready for 2016
Banking On Mobile - Getting Ready for 2016Banking On Mobile - Getting Ready for 2016
Banking On Mobile - Getting Ready for 2016Swrve_Inc
 
OmlisWP_Latin_American_Mobile_Payments
OmlisWP_Latin_American_Mobile_PaymentsOmlisWP_Latin_American_Mobile_Payments
OmlisWP_Latin_American_Mobile_Paymentshelmutokike
 
Banking on The Future of Mobile.
Banking on The Future of Mobile.Banking on The Future of Mobile.
Banking on The Future of Mobile.Conrad Lisco
 
mPay Connect mHealth mFinance country studies dec 2011
mPay Connect mHealth mFinance country studies dec 2011mPay Connect mHealth mFinance country studies dec 2011
mPay Connect mHealth mFinance country studies dec 2011Menekse Gencer
 
Sector Study of Financial Technology in the Philippines
Sector Study of Financial Technology in the PhilippinesSector Study of Financial Technology in the Philippines
Sector Study of Financial Technology in the PhilippinesMaurice Gonzales, MTM
 
Amplifying the Impact: Examining the Intersection of Mobile Health and Mobile...
Amplifying the Impact: Examining the Intersection of Mobile Health and Mobile...Amplifying the Impact: Examining the Intersection of Mobile Health and Mobile...
Amplifying the Impact: Examining the Intersection of Mobile Health and Mobile...Menekse Gencer
 
Banking on Change EVP 2016 Fintech Report
Banking on Change EVP 2016 Fintech ReportBanking on Change EVP 2016 Fintech Report
Banking on Change EVP 2016 Fintech ReportJak Kennedy
 
Aparna Mittal FORE
Aparna Mittal FOREAparna Mittal FORE
Aparna Mittal FOREING Vysya Bank
 
Early Stage Fintech Investment Thesis (Sept 2016)
Early Stage Fintech Investment Thesis (Sept 2016)Early Stage Fintech Investment Thesis (Sept 2016)
Early Stage Fintech Investment Thesis (Sept 2016)Earnest Sweat
 
How fintechs can profit from the female economy final
How fintechs can profit from the female economy finalHow fintechs can profit from the female economy final
How fintechs can profit from the female economy finalChesca Garcia
 
The Future of Philippine Payments Industry: A Technology Foresight by 2022
The Future of Philippine Payments Industry: A Technology Foresight by 2022The Future of Philippine Payments Industry: A Technology Foresight by 2022
The Future of Philippine Payments Industry: A Technology Foresight by 2022Maurice Gonzales, MTM
 
Fintech bubble or Fintech trouble
Fintech bubble or Fintech troubleFintech bubble or Fintech trouble
Fintech bubble or Fintech troubleJulian Levy
 
[E-payment market] Analysis & suggestion to increase ZaloPay users
[E-payment market] Analysis & suggestion to increase ZaloPay users[E-payment market] Analysis & suggestion to increase ZaloPay users
[E-payment market] Analysis & suggestion to increase ZaloPay usersBich Nguyen
 
A New Vision For Payments In Financial Services
A New Vision For Payments In Financial ServicesA New Vision For Payments In Financial Services
A New Vision For Payments In Financial ServicesPenn Mutual
 
Mobile Wars: Fintech vs. Banks... and Big Tech in Ambush
Mobile Wars: Fintech vs. Banks... and Big Tech in AmbushMobile Wars: Fintech vs. Banks... and Big Tech in Ambush
Mobile Wars: Fintech vs. Banks... and Big Tech in AmbushKatia Bazzocchi
 
FinTech Hong Kong Report
FinTech Hong Kong Report FinTech Hong Kong Report
FinTech Hong Kong Report CFTE
 
Why Banks Must Become Smart Aggregators in the Financial Services Digital Eco...
Why Banks Must Become Smart Aggregators in the Financial Services Digital Eco...Why Banks Must Become Smart Aggregators in the Financial Services Digital Eco...
Why Banks Must Become Smart Aggregators in the Financial Services Digital Eco...Cognizant
 
Mobile Remote Deposit Capture: Changing how consumers bank and banks compete
Mobile Remote Deposit Capture: Changing how consumers bank and banks competeMobile Remote Deposit Capture: Changing how consumers bank and banks compete
Mobile Remote Deposit Capture: Changing how consumers bank and banks competeMitek
 
2013_MMU_Compendium-of-case-studies
2013_MMU_Compendium-of-case-studies2013_MMU_Compendium-of-case-studies
2013_MMU_Compendium-of-case-studiesJasim Ahmed
 
Fintech Indonesia Startup Report
Fintech Indonesia Startup ReportFintech Indonesia Startup Report
Fintech Indonesia Startup ReportChristian König
 
Banking Disruption in Financial Services: Threats and Opportunities
Banking Disruption in Financial Services: Threats and OpportunitiesBanking Disruption in Financial Services: Threats and Opportunities
Banking Disruption in Financial Services: Threats and OpportunitiesDogTelligent
 
Increasing your mobile banking business
Increasing your mobile banking businessIncreasing your mobile banking business
Increasing your mobile banking businessVASCO Data Security
 

More Related Content

What's hot

Banking On Mobile - Getting Ready for 2016
Banking On Mobile - Getting Ready for 2016Banking On Mobile - Getting Ready for 2016
Banking On Mobile - Getting Ready for 2016Swrve_Inc
 
OmlisWP_Latin_American_Mobile_Payments
OmlisWP_Latin_American_Mobile_PaymentsOmlisWP_Latin_American_Mobile_Payments
OmlisWP_Latin_American_Mobile_Paymentshelmutokike
 
Banking on The Future of Mobile.
Banking on The Future of Mobile.Banking on The Future of Mobile.
Banking on The Future of Mobile.Conrad Lisco
 
mPay Connect mHealth mFinance country studies dec 2011
mPay Connect mHealth mFinance country studies dec 2011mPay Connect mHealth mFinance country studies dec 2011
mPay Connect mHealth mFinance country studies dec 2011Menekse Gencer
 
Sector Study of Financial Technology in the Philippines
Sector Study of Financial Technology in the PhilippinesSector Study of Financial Technology in the Philippines
Sector Study of Financial Technology in the PhilippinesMaurice Gonzales, MTM
 
Amplifying the Impact: Examining the Intersection of Mobile Health and Mobile...
Amplifying the Impact: Examining the Intersection of Mobile Health and Mobile...Amplifying the Impact: Examining the Intersection of Mobile Health and Mobile...
Amplifying the Impact: Examining the Intersection of Mobile Health and Mobile...Menekse Gencer
 
Banking on Change EVP 2016 Fintech Report
Banking on Change EVP 2016 Fintech ReportBanking on Change EVP 2016 Fintech Report
Banking on Change EVP 2016 Fintech ReportJak Kennedy
 
Early Stage Fintech Investment Thesis (Sept 2016)
Early Stage Fintech Investment Thesis (Sept 2016)Early Stage Fintech Investment Thesis (Sept 2016)
Early Stage Fintech Investment Thesis (Sept 2016)Earnest Sweat
 
How fintechs can profit from the female economy final
How fintechs can profit from the female economy finalHow fintechs can profit from the female economy final
How fintechs can profit from the female economy finalChesca Garcia
 
The Future of Philippine Payments Industry: A Technology Foresight by 2022
The Future of Philippine Payments Industry: A Technology Foresight by 2022The Future of Philippine Payments Industry: A Technology Foresight by 2022
The Future of Philippine Payments Industry: A Technology Foresight by 2022Maurice Gonzales, MTM
 
Fintech bubble or Fintech trouble
Fintech bubble or Fintech troubleFintech bubble or Fintech trouble
Fintech bubble or Fintech troubleJulian Levy
 
[E-payment market] Analysis & suggestion to increase ZaloPay users
[E-payment market] Analysis & suggestion to increase ZaloPay users[E-payment market] Analysis & suggestion to increase ZaloPay users
[E-payment market] Analysis & suggestion to increase ZaloPay usersBich Nguyen
 
A New Vision For Payments In Financial Services
A New Vision For Payments In Financial ServicesA New Vision For Payments In Financial Services
A New Vision For Payments In Financial ServicesPenn Mutual
 
Mobile Wars: Fintech vs. Banks... and Big Tech in Ambush
Mobile Wars: Fintech vs. Banks... and Big Tech in AmbushMobile Wars: Fintech vs. Banks... and Big Tech in Ambush
Mobile Wars: Fintech vs. Banks... and Big Tech in AmbushKatia Bazzocchi
 
FinTech Hong Kong Report
FinTech Hong Kong Report FinTech Hong Kong Report
FinTech Hong Kong Report CFTE
 
Why Banks Must Become Smart Aggregators in the Financial Services Digital Eco...
Why Banks Must Become Smart Aggregators in the Financial Services Digital Eco...Why Banks Must Become Smart Aggregators in the Financial Services Digital Eco...
Why Banks Must Become Smart Aggregators in the Financial Services Digital Eco...Cognizant
 
Mobile Remote Deposit Capture: Changing how consumers bank and banks compete
Mobile Remote Deposit Capture: Changing how consumers bank and banks competeMobile Remote Deposit Capture: Changing how consumers bank and banks compete
Mobile Remote Deposit Capture: Changing how consumers bank and banks competeMitek
 
2013_MMU_Compendium-of-case-studies
2013_MMU_Compendium-of-case-studies2013_MMU_Compendium-of-case-studies
2013_MMU_Compendium-of-case-studiesJasim Ahmed
 
Fintech Indonesia Startup Report
Fintech Indonesia Startup ReportFintech Indonesia Startup Report
Fintech Indonesia Startup ReportChristian König
 

What's hot (20)

Banking On Mobile - Getting Ready for 2016
Banking On Mobile - Getting Ready for 2016Banking On Mobile - Getting Ready for 2016
Banking On Mobile - Getting Ready for 2016
 
OmlisWP_Latin_American_Mobile_Payments
OmlisWP_Latin_American_Mobile_PaymentsOmlisWP_Latin_American_Mobile_Payments
OmlisWP_Latin_American_Mobile_Payments
 
Banking on The Future of Mobile.
Banking on The Future of Mobile.Banking on The Future of Mobile.
Banking on The Future of Mobile.
 
mPay Connect mHealth mFinance country studies dec 2011
mPay Connect mHealth mFinance country studies dec 2011mPay Connect mHealth mFinance country studies dec 2011
mPay Connect mHealth mFinance country studies dec 2011
 
Sector Study of Financial Technology in the Philippines
Sector Study of Financial Technology in the PhilippinesSector Study of Financial Technology in the Philippines
Sector Study of Financial Technology in the Philippines
 
Amplifying the Impact: Examining the Intersection of Mobile Health and Mobile...
Amplifying the Impact: Examining the Intersection of Mobile Health and Mobile...Amplifying the Impact: Examining the Intersection of Mobile Health and Mobile...
Amplifying the Impact: Examining the Intersection of Mobile Health and Mobile...
 
Banking on Change EVP 2016 Fintech Report
Banking on Change EVP 2016 Fintech ReportBanking on Change EVP 2016 Fintech Report
Banking on Change EVP 2016 Fintech Report
 
Aparna Mittal FORE
Aparna Mittal FOREAparna Mittal FORE
Aparna Mittal FORE
 
Early Stage Fintech Investment Thesis (Sept 2016)
Early Stage Fintech Investment Thesis (Sept 2016)Early Stage Fintech Investment Thesis (Sept 2016)
Early Stage Fintech Investment Thesis (Sept 2016)
 
How fintechs can profit from the female economy final
How fintechs can profit from the female economy finalHow fintechs can profit from the female economy final
How fintechs can profit from the female economy final
 
The Future of Philippine Payments Industry: A Technology Foresight by 2022
The Future of Philippine Payments Industry: A Technology Foresight by 2022The Future of Philippine Payments Industry: A Technology Foresight by 2022
The Future of Philippine Payments Industry: A Technology Foresight by 2022
 
Fintech bubble or Fintech trouble
Fintech bubble or Fintech troubleFintech bubble or Fintech trouble
Fintech bubble or Fintech trouble
 
[E-payment market] Analysis & suggestion to increase ZaloPay users
[E-payment market] Analysis & suggestion to increase ZaloPay users[E-payment market] Analysis & suggestion to increase ZaloPay users
[E-payment market] Analysis & suggestion to increase ZaloPay users
 
A New Vision For Payments In Financial Services
A New Vision For Payments In Financial ServicesA New Vision For Payments In Financial Services
A New Vision For Payments In Financial Services
 
Mobile Wars: Fintech vs. Banks... and Big Tech in Ambush
Mobile Wars: Fintech vs. Banks... and Big Tech in AmbushMobile Wars: Fintech vs. Banks... and Big Tech in Ambush
Mobile Wars: Fintech vs. Banks... and Big Tech in Ambush
 
FinTech Hong Kong Report
FinTech Hong Kong Report FinTech Hong Kong Report
FinTech Hong Kong Report
 
Why Banks Must Become Smart Aggregators in the Financial Services Digital Eco...
Why Banks Must Become Smart Aggregators in the Financial Services Digital Eco...Why Banks Must Become Smart Aggregators in the Financial Services Digital Eco...
Why Banks Must Become Smart Aggregators in the Financial Services Digital Eco...
 
Mobile Remote Deposit Capture: Changing how consumers bank and banks compete
Mobile Remote Deposit Capture: Changing how consumers bank and banks competeMobile Remote Deposit Capture: Changing how consumers bank and banks compete
Mobile Remote Deposit Capture: Changing how consumers bank and banks compete
 
2013_MMU_Compendium-of-case-studies
2013_MMU_Compendium-of-case-studies2013_MMU_Compendium-of-case-studies
2013_MMU_Compendium-of-case-studies
 
Fintech Indonesia Startup Report
Fintech Indonesia Startup ReportFintech Indonesia Startup Report
Fintech Indonesia Startup Report
 

Similar to Security Report of Top 100 Mobile Banking Apps - APAC

Banking Disruption in Financial Services: Threats and Opportunities
Banking Disruption in Financial Services: Threats and OpportunitiesBanking Disruption in Financial Services: Threats and Opportunities
Banking Disruption in Financial Services: Threats and OpportunitiesDogTelligent
 
Increasing your mobile banking business
Increasing your mobile banking businessIncreasing your mobile banking business
Increasing your mobile banking businessVASCO Data Security
 
Private Banking: Redefining the Game Through Mobility
Private Banking: Redefining the Game Through MobilityPrivate Banking: Redefining the Game Through Mobility
Private Banking: Redefining the Game Through MobilityCognizant
 
Mobile Banking Trends
Mobile Banking TrendsMobile Banking Trends
Mobile Banking TrendsZSL Mobile
 
Suresh - Mobile Banking (Corporate Banking Stream)
Suresh - Mobile Banking (Corporate Banking Stream) Suresh - Mobile Banking (Corporate Banking Stream)
Suresh - Mobile Banking (Corporate Banking Stream) Knowledge Group
 
Industrial Revolution of Connected Experiences at Asia IoT Business Platform
Industrial Revolution of Connected Experiences at Asia IoT Business PlatformIndustrial Revolution of Connected Experiences at Asia IoT Business Platform
Industrial Revolution of Connected Experiences at Asia IoT Business PlatformKerem Abuc
 
Cloud Banking by Evgeniy Sen - ENG
Cloud Banking by Evgeniy Sen - ENGCloud Banking by Evgeniy Sen - ENG
Cloud Banking by Evgeniy Sen - ENGEvgeniy Sen
 
Financial Services: Digital Trends & Innovations
Financial Services: Digital Trends & InnovationsFinancial Services: Digital Trends & Innovations
Financial Services: Digital Trends & InnovationsCarmelon Digital Marketing
 
Riding the Mobile Payments Tsunami
Riding the Mobile Payments TsunamiRiding the Mobile Payments Tsunami
Riding the Mobile Payments TsunamiMark Sherman
 
BANKING INNOVATIONS THROUGH TECHNOLOGY
BANKING INNOVATIONS THROUGH TECHNOLOGYBANKING INNOVATIONS THROUGH TECHNOLOGY
BANKING INNOVATIONS THROUGH TECHNOLOGYPARAMASIVANCHELLIAH
 
Online Banking Management System – Its Scope and the Technology Used.
Online Banking Management System – Its Scope and the Technology Used.Online Banking Management System – Its Scope and the Technology Used.
Online Banking Management System – Its Scope and the Technology Used.Techugo
 
4 Trends that Define the Future of Banking.pdf
4 Trends that Define the Future of Banking.pdf4 Trends that Define the Future of Banking.pdf
4 Trends that Define the Future of Banking.pdfNovoPay
 
Protecting the Resilience of Canada’s Financial System
Protecting the Resilience of Canada’s Financial SystemProtecting the Resilience of Canada’s Financial System
Protecting the Resilience of Canada’s Financial SystemAjay Shibu
 
Protecting the Resilience of Canada’s Financial System
Protecting the Resilience of Canada’s Financial SystemProtecting the Resilience of Canada’s Financial System
Protecting the Resilience of Canada’s Financial SystemAjay Shibu
 
Swift white paper_mobile_payments
Swift white paper_mobile_paymentsSwift white paper_mobile_payments
Swift white paper_mobile_paymentsRudi Chatab
 
Centre for Disruptive Technologies Mobile Money & Payments Presentation
Centre for Disruptive Technologies Mobile Money & Payments PresentationCentre for Disruptive Technologies Mobile Money & Payments Presentation
Centre for Disruptive Technologies Mobile Money & Payments PresentationSharron L McPherson
 
Future of banking
Future of bankingFuture of banking
Future of bankingShalu Kapur
 

Similar to Security Report of Top 100 Mobile Banking Apps - APAC (20)

Banking Disruption in Financial Services: Threats and Opportunities
Banking Disruption in Financial Services: Threats and OpportunitiesBanking Disruption in Financial Services: Threats and Opportunities
Banking Disruption in Financial Services: Threats and Opportunities
 
Increasing your mobile banking business
Increasing your mobile banking businessIncreasing your mobile banking business
Increasing your mobile banking business
 
Private Banking: Redefining the Game Through Mobility
Private Banking: Redefining the Game Through MobilityPrivate Banking: Redefining the Game Through Mobility
Private Banking: Redefining the Game Through Mobility
 
Mobile Banking Trends
Mobile Banking TrendsMobile Banking Trends
Mobile Banking Trends
 
Suresh - Mobile Banking (Corporate Banking Stream)
Suresh - Mobile Banking (Corporate Banking Stream) Suresh - Mobile Banking (Corporate Banking Stream)
Suresh - Mobile Banking (Corporate Banking Stream)
 
Industrial Revolution of Connected Experiences at Asia IoT Business Platform
Industrial Revolution of Connected Experiences at Asia IoT Business PlatformIndustrial Revolution of Connected Experiences at Asia IoT Business Platform
Industrial Revolution of Connected Experiences at Asia IoT Business Platform
 
Cloud Banking by Evgeniy Sen - ENG
Cloud Banking by Evgeniy Sen - ENGCloud Banking by Evgeniy Sen - ENG
Cloud Banking by Evgeniy Sen - ENG
 
Nida Khan
Nida KhanNida Khan
Nida Khan
 
Financial Services: Digital Trends & Innovations
Financial Services: Digital Trends & InnovationsFinancial Services: Digital Trends & Innovations
Financial Services: Digital Trends & Innovations
 
Riding the Mobile Payments Tsunami
Riding the Mobile Payments TsunamiRiding the Mobile Payments Tsunami
Riding the Mobile Payments Tsunami
 
Banking on Innovation
Banking on InnovationBanking on Innovation
Banking on Innovation
 
BANKING INNOVATIONS THROUGH TECHNOLOGY
BANKING INNOVATIONS THROUGH TECHNOLOGYBANKING INNOVATIONS THROUGH TECHNOLOGY
BANKING INNOVATIONS THROUGH TECHNOLOGY
 
Online Banking Management System – Its Scope and the Technology Used.
Online Banking Management System – Its Scope and the Technology Used.Online Banking Management System – Its Scope and the Technology Used.
Online Banking Management System – Its Scope and the Technology Used.
 
Fintech india: Genesis
Fintech india: GenesisFintech india: Genesis
Fintech india: Genesis
 
4 Trends that Define the Future of Banking.pdf
4 Trends that Define the Future of Banking.pdf4 Trends that Define the Future of Banking.pdf
4 Trends that Define the Future of Banking.pdf
 
Protecting the Resilience of Canada’s Financial System
Protecting the Resilience of Canada’s Financial SystemProtecting the Resilience of Canada’s Financial System
Protecting the Resilience of Canada’s Financial System
 
Protecting the Resilience of Canada’s Financial System
Protecting the Resilience of Canada’s Financial SystemProtecting the Resilience of Canada’s Financial System
Protecting the Resilience of Canada’s Financial System
 
Swift white paper_mobile_payments
Swift white paper_mobile_paymentsSwift white paper_mobile_payments
Swift white paper_mobile_payments
 
Centre for Disruptive Technologies Mobile Money & Payments Presentation
Centre for Disruptive Technologies Mobile Money & Payments PresentationCentre for Disruptive Technologies Mobile Money & Payments Presentation
Centre for Disruptive Technologies Mobile Money & Payments Presentation
 
Future of banking
Future of bankingFuture of banking
Future of banking
 

More from Appknox

What are the Types of SQL Injection Attacks?
What are the Types of SQL Injection Attacks?What are the Types of SQL Injection Attacks?
What are the Types of SQL Injection Attacks?Appknox
 
Appknox Enterprise Offerings
Appknox Enterprise OfferingsAppknox Enterprise Offerings
Appknox Enterprise OfferingsAppknox
 
2016 Year in Review - Our Top 10 Blog Posts On Mobile Application Security
2016 Year in Review - Our Top 10 Blog Posts On Mobile Application Security 2016 Year in Review - Our Top 10 Blog Posts On Mobile Application Security
2016 Year in Review - Our Top 10 Blog Posts On Mobile Application Security Appknox
 
The Ultimate Security Checklist While Launching Your Android App
The Ultimate Security Checklist While Launching Your Android AppThe Ultimate Security Checklist While Launching Your Android App
The Ultimate Security Checklist While Launching Your Android AppAppknox
 
10 Reasons Why Apple Rejects Apps From The App Store
10 Reasons Why Apple Rejects Apps From The App Store10 Reasons Why Apple Rejects Apps From The App Store
10 Reasons Why Apple Rejects Apps From The App StoreAppknox
 
#Chennai needsyou
#Chennai needsyou#Chennai needsyou
#Chennai needsyouAppknox
 
The Ultimate Security Checklist Before Launching Your Android App
The Ultimate Security Checklist Before Launching Your Android AppThe Ultimate Security Checklist Before Launching Your Android App
The Ultimate Security Checklist Before Launching Your Android AppAppknox
 
5 Must Watch Movies on Hacking
5 Must Watch Movies on Hacking5 Must Watch Movies on Hacking
5 Must Watch Movies on HackingAppknox
 
Top 5 Mobile Trends To Look For In 2015
Top 5 Mobile Trends To Look For In 2015Top 5 Mobile Trends To Look For In 2015
Top 5 Mobile Trends To Look For In 2015Appknox
 
5 Signs You Should Invest in Security
5 Signs You Should Invest in Security5 Signs You Should Invest in Security
5 Signs You Should Invest in SecurityAppknox
 
5 Things CIOs Need To Take Care With BYOD Security
5 Things CIOs Need To Take Care With BYOD Security5 Things CIOs Need To Take Care With BYOD Security
5 Things CIOs Need To Take Care With BYOD SecurityAppknox
 

More from Appknox (11)

What are the Types of SQL Injection Attacks?
What are the Types of SQL Injection Attacks?What are the Types of SQL Injection Attacks?
What are the Types of SQL Injection Attacks?
 
Appknox Enterprise Offerings
Appknox Enterprise OfferingsAppknox Enterprise Offerings
Appknox Enterprise Offerings
 
2016 Year in Review - Our Top 10 Blog Posts On Mobile Application Security
2016 Year in Review - Our Top 10 Blog Posts On Mobile Application Security 2016 Year in Review - Our Top 10 Blog Posts On Mobile Application Security
2016 Year in Review - Our Top 10 Blog Posts On Mobile Application Security
 
The Ultimate Security Checklist While Launching Your Android App
The Ultimate Security Checklist While Launching Your Android AppThe Ultimate Security Checklist While Launching Your Android App
The Ultimate Security Checklist While Launching Your Android App
 
10 Reasons Why Apple Rejects Apps From The App Store
10 Reasons Why Apple Rejects Apps From The App Store10 Reasons Why Apple Rejects Apps From The App Store
10 Reasons Why Apple Rejects Apps From The App Store
 
#Chennai needsyou
#Chennai needsyou#Chennai needsyou
#Chennai needsyou
 
The Ultimate Security Checklist Before Launching Your Android App
The Ultimate Security Checklist Before Launching Your Android AppThe Ultimate Security Checklist Before Launching Your Android App
The Ultimate Security Checklist Before Launching Your Android App
 
5 Must Watch Movies on Hacking
5 Must Watch Movies on Hacking5 Must Watch Movies on Hacking
5 Must Watch Movies on Hacking
 
Top 5 Mobile Trends To Look For In 2015
Top 5 Mobile Trends To Look For In 2015Top 5 Mobile Trends To Look For In 2015
Top 5 Mobile Trends To Look For In 2015
 
5 Signs You Should Invest in Security
5 Signs You Should Invest in Security5 Signs You Should Invest in Security
5 Signs You Should Invest in Security
 
5 Things CIOs Need To Take Care With BYOD Security
5 Things CIOs Need To Take Care With BYOD Security5 Things CIOs Need To Take Care With BYOD Security
5 Things CIOs Need To Take Care With BYOD Security
 

Recently uploaded

Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesSinan KOZAK
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking MenDelhi Call girls
 
Artificial intelligence in the post-deep learning era
Artificial intelligence in the post-deep learning eraArtificial intelligence in the post-deep learning era
Artificial intelligence in the post-deep learning eraDeakin University
 
Slack Application Development 101 Slides
Slack Application Development 101 SlidesSlack Application Development 101 Slides
Slack Application Development 101 Slidespraypatel2
 
How to Remove Document Management Hurdles with X-Docs?
How to Remove Document Management Hurdles with X-Docs?How to Remove Document Management Hurdles with X-Docs?
How to Remove Document Management Hurdles with X-Docs?XfilesPro
 
Install Stable Diffusion in windows machine
Install Stable Diffusion in windows machineInstall Stable Diffusion in windows machine
Install Stable Diffusion in windows machinePadma Pradeep
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountPuma Security, LLC
 
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 3652toLead Limited
 
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Alan Dix
 
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure serviceWhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure servicePooja Nehwal
 
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...HostedbyConfluent
 
Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024Scott Keck-Warren
 
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024BookNet Canada
 
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | DelhiFULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhisoniya singh
 
Making_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptx
Making_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptxMaking_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptx
Making_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptxnull - The Open Security Community
 
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationRidwan Fadjar
 
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j
 
AI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsAI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsMemoori
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsEnterprise Knowledge
 

Recently uploaded (20)

Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen Frames
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
 
Artificial intelligence in the post-deep learning era
Artificial intelligence in the post-deep learning eraArtificial intelligence in the post-deep learning era
Artificial intelligence in the post-deep learning era
 
Slack Application Development 101 Slides
Slack Application Development 101 SlidesSlack Application Development 101 Slides
Slack Application Development 101 Slides
 
How to Remove Document Management Hurdles with X-Docs?
How to Remove Document Management Hurdles with X-Docs?How to Remove Document Management Hurdles with X-Docs?
How to Remove Document Management Hurdles with X-Docs?
 
Install Stable Diffusion in windows machine
Install Stable Diffusion in windows machineInstall Stable Diffusion in windows machine
Install Stable Diffusion in windows machine
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
 
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptxE-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
 
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
 
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
 
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure serviceWhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
 
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
 
Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024
 
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
 
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | DelhiFULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
 
Making_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptx
Making_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptxMaking_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptx
Making_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptx
 
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 Presentation
 
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
 
AI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsAI as an Interface for Commercial Buildings
AI as an Interface for Commercial Buildings
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI Solutions
 

Security Report of Top 100 Mobile Banking Apps - APAC

  • 1. Security Report of Top 100 Mobile Banking Apps -APAC
  • 2. EXECUTIVE SUMMARY 3 DIGITALIZATION AND MOBILIZATION 4 ADOPTING MOBILITY IN BANKING 5 5 TRENDS TO WATCH OUT FOR 6 THE BILLION DOLLAR BANK HEIST 7 RESEARCH METHODOLOGY 8 THREAT SCENARIOS 9 OUR FINDINGS 10 THREAT SEVERITY LEVEL 11 TOP THREATS 12 CONCLUSION 13 CONTENT Mobile Banking in APAC | 2
  • 3. Poised at the center of the world’s fastest growing and soon-to be-largest wealth markets, the potential upside for Asia-Pacific’s private banks and wealth managers is clear. Asia-Pacific is the highest growth region for private banks and is soon expected to overtake North America as the largest market for High Networth Individuals (HNIs) (Customers with more than $1 million in investable assets). With tremendous pressure from both stakeholders, investors and rivalry from other financial institutions, banks are now being forced to go down the path of innovation and technological change to ensure sustainability. Most Asian banks have been seen to adapt well to change; however with the opportunity that comes with change, also lays major security concerns. Appknox’s study with some of Asia’s top mobile banking players covers: › How banks in Asia are innovating to keep up with trending consumer demands. › How mobile will be a central influencing factor in facilitating change in banking. › Key Trends Asian banks are experiencing and adopting. › A bank heist that forever changed our view on hackers. › Results obtained from the study conducted with over 100 top mobile banking providers in Asia. › A threat & vulnerability overview found with the 100 banks. We foresee that banks able to adapt, embrace and restructure their digital and in particular their mobile strategy to the changing dynamics of the banking ecosystem, will be the ones in authoritative positions to reap the benefits from APAC’s predicted growth trend. “By 2018, the Asia Pacific region is expected to make up more than one-third of global wealth, with its private wealth forecast to reach $76.9 trillion.” EXECUTIVE SUMMARY Mobile Banking in APAC | 3
  • 4. Banks are still struggling to devise the perfect cross-channel experiences for their customers, experiences that take advantage of digitization to provide customers with targeted just-in-time product or service information in an effective and seamless way. - McKinsey As ideal as it seems, changing core banking systems to become truly digital is not an easy task. However, traditional banks have to watch out against new and nimble companies that are looking to enter the banking market with newer technologies such as mobile, social pay, e-wallets etc. to penetrate into the financial market space. Embracing digital banking strategy - Best practices: › Be quick to adopt digital strategies to cope with the new age non-banking competitors. › Leverage advanced analytics and Big Data to understand how customers take decision in their digital journey. › Go mobile first and accept mobile payments to provide a retail-like experience to banking customers. › Expedite delivery of banking services through digital. Rise of DIGITALIZATION AND MOBILIZATION in Banking Mobile Banking in APAC | 4
  • 5. Are you aware of your apps vulnerabilities? Find out where you stand using Appknox’s free Appgrader Grade Now
  • 6. Mobile banking has existed for close to 15 years. However with the recent boom in the smartphone market, mobile banking has turned from convenience to a vital tool. Bankers have been talking about using cell phones as a channel for consumer banking almost as long as energy companies have been trying to make solar power affordable, but it has taken a confluence of factors to make mobile banking a reality. Why banks should go Mobile... › Rapid adoption of smartphones- 2 billion consumers worldwide to get smart(phones) by 2016. › Shifts in consumer preferences- Like automated teller machines (ATMs) and online banking services, smartphones give consumers the power to perform actions like real time payment, instant generation of bank statements, credit card payment and many other such features. › A significant capability build-out The Global Mobile Banking Report 2015 claims that the adoption of mobile technologies for banking has reached 60% to 70% of the total banking population in India and China which is higher that the United States and Europe. › Product and services innovation The mobile channel allows banks to offer customers features they cannot find online, such as remote check deposit, person-to-person (P2P) payments, and real-time fraud notification. - Deloitte ADOPTING MOBILITY IN BANKING Mobile Banking in APAC | 5
  • 7. - Cisco Mobile is already the largest banking channel for the majority of banks by volume of transactions. -KPMG The Cisco Visual Networking Index Global Mobile Data Traffic Forecast (Cisco VNI) for 2014 to 2019 indicates there will be 5.3 billion mobile users and 11.5 billion mobile-ready devices, including 8.3 billion personal mobile devices and 3.2 billion M2M connections by 2019. Mobile adoption rates are highest in so-called developing countries – reaching 60-70% in China and India – rather than developed nations, such as the US, Canada and the UK. -KPMG Innovation will be the focus for APAC banks in 2015. Many of them now allocate up to 25% of their IT budgets on emerging technologies designed to improve operations and services. -IDC Financial In addition to rapidly-growing consumer use of mobile banking and payments, there has also been a clear global shift towards interbank real-time payments. -IDC Financial Another popular APAC banking 2015 trend is the continued growth of global RMB payments. In November 2014, the RMB reached a new milestone when it overtook the Canadian and Australian dollar as a global payments currency. -IDC Financial “By 2020an estimated 50 billion devices will be connected to the internet.” 5 TRENDS TO WATCH OUT FOR Mobile Banking in APAC | 6
  • 8. $1B 100 Banks 30 Countries 2 Years 1. Infection 2. Harvesting Intelligence Intercepting the clerk’s screens. 3. Mimicking Staff How the money was stolen? Carbanak backdoor sent as an attach- ment. Email with exploits Credentials Stolen 100’s of machines infected in search of the admin pc Bank Employee Online-Banking Money was transferred to Fraudsters’ account E-payment Systems Money was transferred to Banks in China and the US Inflating Account Balances The extra funds were pocketed via a fraudulent transaction. Controlling ATM’s Orders to disperse cash at a predetermined time. Admin Rec Hacker ‘ A multinational gang of cybercriminals infiltrated more than 100 banks across 30 countries and made off with up to one billion dollars over a period of roughly two years. ’ THE BILLION DOLLAR BANK HEIST Mobile Banking in APAC | 7 - Kaspersky
  • 9. See how Appknox helps detect and resolve security issues in your app Book a free 20 minute session with our security researchers Request Demo
  • 10. This research consists of mobile applications based on Android and available for use in the APAC region of the Google Play Store. Only Android applications were chosen to maintain consistency in comparison and analysis. Why we chose banking? Banking has always been central in our daily lives. Banks have also always had the reputation of being an early adopter of technology, often innovators themselves. In a world where mobile phones are the centre of technological innovation directly impacting the lives of many, it was essential to study how security for banking would cope with this magnitude of technological innovation and change. How did we choose the apps? We chose APAC to be our region of study, picking from 106 banking apps that work and operate in this region and analyzed their Android applications across 14 threat scenarios. There was no bias in selecting the apps. These include almost all the banks that offer their services via a mobile app in this region. RESEARCH METHODOLOGY Mobile Banking in APAC | 8
  • 11. 106banking apps 14threat scenarios Hostnameverifier Allows all Hostname Broken Trust Manager for SSL Improper Content Provider Permissions Insecure SSL Socket Factory Implemented Broken Hostnameverifier for SSL Remote Code Execution Through Javascript Interface Application Logs Derived Crypto Keys Unprotected Services Insufficient Transport Layer Protection Application Debug Enabled Improper Custom Permission Unused Permissions App Extends Web View Client THREAT SCENARIOS Mobile Banking in APAC | 9
  • 12. 85%of the mobile banking apps failed basic security check! 50%of apps were found to have atleast 4-6 loopholes in them! 106mobile banking apps were scanned 15% 85% 0-3 4-6 7-9 Number of Vulnerabilities 34% 54% 12% OUR FINDINGS Mobile Banking in APAC | 10
  • 13. 67% of the threats detected were of HIGH SEVERITY. 24%low severity 9%medium severity 67%high severity THREAT SEVERITY LEVEL Mobile Banking in APAC | 11
  • 14. Top5threats “74%of the apps were diagnosed with the top 5 threats.” Broken Trust Manager for SSL Remote Code Execution Through Javascript Interface Unused Permissions Other Threats Insufficient Transport Layer Protec- tion Derived CryptoKeys 24% 13% 15% 10% 12% 26% TOP THREATS Mobile Banking in APAC | 12
  • 15. Along with using and reinventing old hacking techniques, cyber criminals are constantly exploring newer sophisticated channels to exploit financial institutions. The recent explosion of mobile app markets has paved a way for hackers to exploit new hunting grounds. According to a study conducted by PWC, 45% of Financial Services organizations have suffered economic crime, compared to only 34% across all other industries. Security threats are constantly evolving... We put 106 mobile banking apps to the test, across 14 different threat scenarios. Our study revealed that 85% of mobile banking apps were vulnerable to high, medium and low security loopholes. Over 50% of apps were found to have at least 4 to 6 bugs in them. We also found that more than 74% of apps were diagnosed with the top 5 threats on our checklist, making them extremely vulnerable to attacks. Standard Security Measures can only take you so far… We’ve observed over the years, that despite security measures being ramped up, hackers have still found their way around. It is evident through this study that threats are still prevalent in several mobile banking apps. Mobile apps have weaved their way into being a key component in digital banking strategy. It is vital that banks pay equal importance to both innovation as well as security to ensure maximum customer satisfaction. 462threats found in a total of 106 apps across 14 threat scenarios. CONCLUSION Mobile Banking in APAC | 13
  • 16. Copyright © 2015 by Appknox (XYSec Labs Pte. Ltd.) Appknox is a cloud-based mobile app security solution that helps protect enterprises by detecting security loopholes with suggestions to fix them. Appknox is supported by Microsoft and has been recognised as one of the thought leaders in the information security space. They have won multiple awards like NASSCOM Emerge 50, GMIC Top 3 Startups, Winner of HOT 100 Technology Award, CIOReview’s Top Enterprise Startup to Watch Out For, to name a few. All rights reserved. No part of this publication may be reproduced, distributed, or transmitted in any form or by any means, including photocopying, recording, or other electronic or mechanical methods, without the prior written permission of the publisher, except in the case of brief quotations embodied in critical reviews and certain other noncommercial uses permitted by copyright law. For permission requests, write to the publisher, addressed “Attention: Permissions Coordinator,” at: Prateek Panda Chief Marketing Officer Appknox (XYSec Labs Pte. Ltd.) prateek@appknox.com www.appknox.com