back Back

More than 80% of global banking apps susceptible to new strains of Malware

By Puja Sharma

December 14, 2023

  • AI in Banking
  • Android app
  • APP Fraud
Share

 

fraud, Malware, Banks

Due to the advanced security deployed by many banks in both the United Kingdom and the United States, Promon also reviewed these countries separately. The United States scored the lowest in performance relative to the global benchmark. After testing the 26 top U.S. consumer banking apps

Promon, the leading provider of application shielding technology responsible for recently uncovering FjordPhantom, an emerging cyber threat targeting banks in Southeast Asia, revealed the findings of its latest research into the susceptibility of the world’s top banking apps to this sophisticated new strain of malware.

10 million Thai Baht (approximately $280,000) after falling victim to FjordPhantom. Samples obtained through end-user devices show that FjordPhantom utilizes an unprecedented method of running the targeted app in a virtual environment with additional malicious components, a method which evades advanced detection mechanisms that banking apps usually employ to protect themselves against malware.

Promon has since analyzed 113 of the world’s top banking apps for Android to see how these apps would respond when placed into FjordPhantom’s virtual container. Of the 113 apps, 91 (80.5%) ran inside FjordPhantom’s virtual container – a testament to the virulence of the FjordPhantom’s unique form of attack which has now been proven to pose a significant threat to the majority of the world’s supposedly most secure consumer banking apps.

Banking fraud continues to increase and the question of who is liable for the losses that result is becoming a more serious concern. Banks are generally liable to reimburse victims of frauds in which the fraudster initiates the illicit payment. In cases where the victim does so – authorized push payment frauds – banks have usually been able to avoid liability.

Due to the advanced security deployed by many banks in both the United Kingdom and the United States, Promon also reviewed these countries separately. The United States scored the lowest in performance relative to the global benchmark. After testing the 26 top U.S. consumer banking apps according to SensorTower, 22 (84.6%) ran in FjordPhantom’s virtual  banking apps according to SensorTower performed better than the global benchmark, with 16 (76.2%) of apps tested successfully running in FjordPhantom’s virtual container.

“Our findings display the threat that FjordPhantom poses and just how easy it is to adapt the malware to target different apps, most of which are currently unable to protect against such attacks” said Benjamin Adolphi, head of security research at Promon. “At this moment in time, it appears that FjordPhantom’s use of weaponized virtualization is currently localized to countries in Southeast Asia. Yet, if paired with an effective method of transmission tailored for other nations, such as a wave of malicious emails and texts, it’s entirely possible that this malware could be used by hackers across the globe to target banking apps and commit widespread fraud.”

Previous Article

December 14, 2023

Entersekt expands global reach with Modirum 3-D Secure acquisition

Read More
Next Article

December 14, 2023

Lentra unveils AI-driven products & lending cloud for Banks & NBFCs

Read More






IBSi FinTech Journal

  • Most trusted FinTech journal since 1991
  • Digital monthly issue
  • 60+ pages of research, analysis, interviews, opinions, and rankings
  • Global coverage
Subscribe Now

Other Related News

January 13, 2025

The Monday Roundup: what we are watching this week | Jan 13th

Read More

January 10, 2025

LogicMonitor & Gieom to boost operational resilience in financial services

Read More

January 10, 2025

Unit4 appoints ex-Finastra exec Simon Paris as CEO

Read More

Related Reports

Sales League Table Report 2024
Know More
Global Digital Banking Vendor & Landscape Report Q4 2024
Know More
NextGen WealthTech: The Trends To Shape The Future Q4 2023
Know More
IBSi Spectrum Report: Supply Chain Finance Platforms Q4 2023
Know More
Treasury & Capital Markets Systems Report Q4 2024
Know More