Vulnerability Analysis of Digital Banks' Mobile Applications

AI-generated keywords: Mobile banking security vulnerability digital banks Androbugs

AI-generated Key Points

The rise of smart mobile devices has led to an increase in users for mobile banking applications
Collection of personal data by these apps has raised security concerns
Attackers who gain access to personal information can potentially access bank accounts
Research analyzed the vulnerability of six digital banks' android applications in the UK using Androbugs, a vulnerability scanner
Scanned digital banks' applications were Starling, Monese, Atom bank, Transferwise, Monzo and Revolut
All scanned digital banks' applications had vulnerabilities; however some had more than others
Revolut's mobile application had the highest number of identified vulnerabilities
There is a need for improved security measures in digital banks' applications as well as other mobile banking apps
Digitalization is increasing globally with Fintech enabling digital banks to operate without physical contacts while offering all services online through smartphones or computers
COVID-19 pandemic made accessing banking services through online channels necessary
A report was generated containing title of vector paths for source code severity level of vulnerability (critical warning notice info.), category of vector vulnerability background knowledge and recommendations on how to mitigate the vulnerability weakness found in each app.

Also access our AI generated: Comprehensive summary, Lay summary, Blog-like article; or ask questions about this paper to our AI assistant.

Authors: Polra Victor Falade, Grace Bunmi Ogundele

Nigerian Defence Academy Journal of Military Science and Interdisciplinary Studies, 1(1), 2022

arXiv: 2302.07586v1 - DOI (cs.CR)

12 pages

License: CC BY 4.0

Abstract: There is a rapid increase in the number of mobile banking applications' users due to an increase in smart mobile devices. Mobile banking is a financial transaction and service offered through mobile devices. Almost all financial institutions now provide mobile banking services to their customers. However, the security of mobile banking applications is of huge concern because of the amount of personal data and information they collect. If an attacker gets hold of personal information, they can access bank payment or card accounts. This research aims to analyze the vulnerability of the UK digital banks' applications to identify vulnerabilities in the apps and proffer countermeasures that can help improve the security of the bank applications. Androbugs, a vulnerability scanner, was used to analyze the vulnerability of six digital banks' android applications. Starling, Monese, Atom bank, Transferwise, Monzo, and Revolut were scanned. All the scanned digital banks' applications have vulnerabilities; however, some have more vulnerabilities than others. For example, Revolut's mobile application has the highest number of identified vulnerabilities. Therefore, there is need for more security in the digital banks' applications as well as other mobile banking applications.

Submitted to arXiv on 15 Feb. 2023

Ask questions about this paper to our AI assistant

You can also chat with multiple papers at once here.

AI assistant instructions?

Results of the summarizing process for the arXiv paper: 2302.07586v1

Comprehensive Summary
Key points
Layman's Summary
Blog article

The rise of smart mobile devices has led to a rapid increase in the number of users for mobile banking applications, which offer financial transactions and services through mobile devices. However, the collection of personal data and information by these apps has raised concerns about their security. In particular, attackers who gain access to personal information can potentially access bank payment or card accounts. To address this issue, this research analyzed the vulnerability of six digital banks' android applications in the UK using Androbugs, a vulnerability scanner. The scanned digital banks' applications were Starling, Monese, Atom bank, Transferwise, Monzo and Revolut. The results showed that all scanned digital banks' applications had vulnerabilities; however some had more than others. For instance Revolut's mobile application had the highest number of identified vulnerabilities. Therefore there is a need for improved security measures in digital banks' applications as well as other mobile banking apps. Digitalization is increasing globally with Fintech enabling digital banks to operate without physical contacts while offering all services online through smartphones or computers. This trend has become even more popular due to the COVID-19 pandemic where accessing banking services through online channels became necessary to keep economies growing while people stayed at home performing financial transactions. After analyzing each app with Androbugs on Windows OS a report was generated containing title of vector paths for source code severity level of vulnerability (critical warning notice info. ), category of vector vulnerability background knowledge and recommendations on how to mitigate the vulnerability weakness found in each app.

- The rise of smart mobile devices has led to an increase in users for mobile banking applications
- Collection of personal data by these apps has raised security concerns
- Attackers who gain access to personal information can potentially access bank accounts
- Research analyzed the vulnerability of six digital banks' android applications in the UK using Androbugs, a vulnerability scanner
- Scanned digital banks' applications were Starling, Monese, Atom bank, Transferwise, Monzo and Revolut
- All scanned digital banks' applications had vulnerabilities; however some had more than others
- Revolut's mobile application had the highest number of identified vulnerabilities
- There is a need for improved security measures in digital banks' applications as well as other mobile banking apps
- Digitalization is increasing globally with Fintech enabling digital banks to operate without physical contacts while offering all services online through smartphones or computers
- COVID-19 pandemic made accessing banking services through online channels necessary
- A report was generated containing title of vector paths for source code severity level of vulnerability (critical warning notice info.), category of vector vulnerability background knowledge and recommendations on how to mitigate the vulnerability weakness found in each app.

Summary: Mobile banking apps are becoming more popular because of smartphones. But, these apps collect personal information which can be dangerous if someone else gets it. Some bad people can use this information to steal money from bank accounts. Researchers tested six digital banks' apps in the UK and found that they all had problems that could let bad people get into them. One app called Revolut had the most problems. We need better security for these apps so that our money stays safe. Definitions- Smart mobile devices: electronic devices like smartphones or tablets that have internet access and can run different types of software applications (apps). - Personal data: information about a person, such as their name, address, phone number, or bank account details. - Security concerns: worries about how safe something is from being stolen or damaged by bad people. - Vulnerability scanner: a tool used to find weaknesses in computer programs or systems that could be exploited by attackers. - Digitalization: the process of using technology to make things digital (like banking services), instead of relying on physical objects or paper documents. - Fintech: short for financial technology; refers to companies that use technology to provide financial services (like digital banks). - Mitigate: reduce or lessen the impact of something negative (like a vulnerability weakness in an app).

The Rise of Mobile Banking and the Need for Improved Security

Mobile banking applications have become increasingly popular in recent years, allowing users to access financial services on their mobile devices. However, with this convenience comes a risk: attackers can gain access to personal information and potentially access bank payment or card accounts. To address this issue, researchers recently analyzed the vulnerability of six digital banks' Android applications in the UK using Androbugs, a vulnerability scanner.

Analyzing Digital Banks' Applications

The scanned digital banks' applications were Starling, Monese, Atom bank, Transferwise, Monzo and Revolut. The results showed that all scanned digital banks' applications had vulnerabilities; however some had more than others. For instance Revolut's mobile application had the highest number of identified vulnerabilities.

Digitalization During COVID-19 Pandemic

Digitalization is increasing globally with Fintech enabling digital banks to operate without physical contacts while offering all services online through smartphones or computers. This trend has become even more popular due to the COVID-19 pandemic where accessing banking services through online channels became necessary to keep economies growing while people stayed at home performing financial transactions.

Vulnerability Scanning Using Androbugs

After analyzing each app with Androbugs on Windows OS a report was generated containing title of vector paths for source code severity level of vulnerability (critical warning notice info.), category of vector vulnerability background knowledge and recommendations on how to mitigate the vulnerability weakness found in each app.

Conclusion

In conclusion, there is an urgent need for improved security measures in digital banks' applications as well as other mobile banking apps in order to protect user data from potential attackers who could gain access to sensitive information stored within these apps. As technology continues to evolve and more people rely on mobile banking solutions for their financial needs during this pandemic period it is essential that security measures are put into place so that users can trust their data will remain secure when using these apps

Created on 08 Apr. 2023

Assess the quality of the AI-generated content by voting

Score: 0

The previous summary was created more than a year ago and can be re-run (if necessary) by clicking on the Run button below.

Similar papers summarized with our AI tools

46.7%

Smart Contract and DeFi Security: Insights from Tool Evaluations and Practiti…

cs.CR

46.7%

Hello Me, Meet the Real Me: Audio Deepfake Attacks on Voice Assistants

cs.CR

Navigate through even more similar papers through a

tree representation

Look for similar papers (in beta version)

By clicking on the button above, our algorithm will scan all papers in our database to find the closest based on the contents of the full papers and not just on metadata. Please note that it only works for papers that we have generated summaries for and you can rerun it from time to time to get a more accurate result while our database grows.

Disclaimer: The AI-based summarization tool and virtual assistant provided on this website may not always provide accurate and complete summaries or responses. We encourage you to carefully review and evaluate the generated content to ensure its quality and relevance to your needs.