More than 80% of global banking apps susceptible to new strains of Malware
By Puja Sharma
Due to the advanced security deployed by many banks in both the United Kingdom and the United States, Promon also reviewed these countries separately. The United States scored the lowest in performance relative to the global benchmark. After testing the 26 top U.S. consumer banking apps
Promon, the leading provider of application shielding technology responsible for recently uncovering FjordPhantom, an emerging cyber threat targeting banks in Southeast Asia, revealed the findings of its latest research into the susceptibility of the world’s top banking apps to this sophisticated new strain of malware.
10 million Thai Baht (approximately $280,000) after falling victim to FjordPhantom. Samples obtained through end-user devices show that FjordPhantom utilizes an unprecedented method of running the targeted app in a virtual environment with additional malicious components, a method which evades advanced detection mechanisms that banking apps usually employ to protect themselves against malware.
Promon has since analyzed 113 of the world’s top banking apps for Android to see how these apps would respond when placed into FjordPhantom’s virtual container. Of the 113 apps, 91 (80.5%) ran inside FjordPhantom’s virtual container – a testament to the virulence of the FjordPhantom’s unique form of attack which has now been proven to pose a significant threat to the majority of the world’s supposedly most secure consumer banking apps.
Banking fraud continues to increase and the question of who is liable for the losses that result is becoming a more serious concern. Banks are generally liable to reimburse victims of frauds in which the fraudster initiates the illicit payment. In cases where the victim does so – authorized push payment frauds – banks have usually been able to avoid liability.
Due to the advanced security deployed by many banks in both the United Kingdom and the United States, Promon also reviewed these countries separately. The United States scored the lowest in performance relative to the global benchmark. After testing the 26 top U.S. consumer banking apps according to SensorTower, 22 (84.6%) ran in FjordPhantom’s virtual banking apps according to SensorTower performed better than the global benchmark, with 16 (76.2%) of apps tested successfully running in FjordPhantom’s virtual container.
“Our findings display the threat that FjordPhantom poses and just how easy it is to adapt the malware to target different apps, most of which are currently unable to protect against such attacks” said Benjamin Adolphi, head of security research at Promon. “At this moment in time, it appears that FjordPhantom’s use of weaponized virtualization is currently localized to countries in Southeast Asia. Yet, if paired with an effective method of transmission tailored for other nations, such as a wave of malicious emails and texts, it’s entirely possible that this malware could be used by hackers across the globe to target banking apps and commit widespread fraud.”
IBSi FinTech Journal
- Most trusted FinTech journal since 1991
- Digital monthly issue
- 60+ pages of research, analysis, interviews, opinions, and rankings
- Global coverage
Other Related News
January 10, 2025