Major mobile banking app security holes uncovered

You might not want to check your bank account from your phone after all. Mobile apps from USAA, Chase, Wells Fargo, Bank of America, and TD Ameritrade have major security holes, reports research firm viaForensics and WSJ. The bugs center mainly around iPhone and Android versions of the apps, and could potentially allow a hacker to learn your username, password, and some financial information. In other words, this is bad.


The apps currently save sensitive information in the phone’s memory. If the device is stolen, a criminal could hack into the physical phone and extract everything they need to remotely access the bank account. Worse, if the smartphone user is conned into visiting a malicious website, the information could also be extracted. Digital Trends