If you live life on the move, then mobile banking can seem like an ideal way to keep track of your finances. But is it a safe way to manage your money?
The advent of smart phones means that you can now access your bank accounts whenever and wherever you are – but are you leaving yourself open to fraud and loss when you do so?
Firstly there are various types of ‘mobile’ banking and each comes with associated risks.
Text update facilities, whereby you receive notifications of your balance or a mini statement in the form of a text, pose little risk as they don’t actually provide direct access to your accounts. As such there is little a potential fraudster can do with this facility alone.
However, there are other forms of banking using your smart phone that do provide you – and anyone who accesses your phone - with direct access to your bank accounts.
For example First Direct allows smart phone users to log into a full version of their internet banking site using a smart phone. While others provide banking apps that let you manage your money via your mobile.
At the moment banking on most smart phones is relatively safe – as long as you take the necessary security precautions – as they will only allow you to run one application at a time.This means that while you are using your mobile banking application there is unlikely to be another program (like a virus or other malicious software) running in the background, accessing the internet and posing a security risk.
However, as phones become increasingly sophisticated and more like regular computers, the safety of mobile banking is getting to be a bigger concern.
Phones that allow you to access multiple applications simultaneously (like the iPhone4) pose the biggest risk when you use them to access your bank accounts. This is because with multi-tasking comes a greater chance that malicious software could be running in the background without your knowledge.
Standard mobile banking applications let you view account balances, mini statements and transfer money between your own accounts. This means that it easy to check the activity on your account but less easy to take money out.
Some dedicated mobile banking apps also let you send money to existing recipients, which have been set up using the banks online banking service. This means you can send money out of your account to pre-authorised recipients but not to any bank account.
Using you smart phone to access your online banking facility will allow you to perform the same functions as if you were logging onto your PC in your living room. While this opens you up to the same risks it does provide you with easier access to your account and means should you fall victim you’ll be quicker to spot any fraudulent transactions and report them.
Providing you take the necessary security measures, there is currently no reason to think the banking via your smart phone is any less secure than any other means of accessing your accounts. If it means you check your finances on a more regular basis, then that’s got to be a good thing.
Most specific mobile banking apps don’t actually store your bank details directly on your phone, but instead access it from a secure data centre. This means your mobile itself will never hold your personal bank information . HSBC, First Direct, Alliance & Leicester, NatWest, RBS and Lloyds TSB all use the mobile banking service provided by Monilink .
Some banks now offer specific software to tackle the threat of mobile fraud, Barclays currently offer free Kaspersky Mobile Security Software with their phone banking application. This is aimed at providing an extra security level to protect you from any virus or Trojan attack.
What may make all the difference as to whether you decide to give mobile banking a try is the guarantees you get from your bank.
It is worth checking if your bank will refund any losses you incur if you fall victim to mobile fraud. Most UK banking institutions will refund any losses providing you have taken reasonable care and not misused the service .
With regards to accessing internet banking from a smart phone most banks do not specifically state a policy regarding guarantees against fraud. (Although they do for internet and ‘mobile’ banking separately) If you have any doubt as to where you stand then you should contact your bank to check before logging on.
Due to the ever developing nature of the smart phone industry most of the major anti-virus providers now offer a dedicated smartphone security packages. These monitor background activity on your phone to stop viruses compromising your personal data.
While smartphones users are not quite in the same position as laptop and netbook users for whom anti-virus is essential , if you plan to use your smartphone for banking on a regular basis then anti-virus software certainly will add an extra level of protection.
The general consensus amongst the security industry is that mobile viruses and worms are only going to become more sophisticated and a greater threat in the near future. As a result it is certainly something worth considering.
If you are unfortunate to lose or have you mobile stolen then you will need to contact your mobile network provider as soon as possible. They can then block the phone to make it unusable.
As long as your passcode or log in details are still secure then whoever has your phone would not be able to access you mobile banking.
If you are using the online banking system using your smart phone again without your log in pin and passwords any potential fraudster would have difficulty accessing you online account.
To reduce your chances of falling victim to fraud when you bank online via your smart phone you should:
As with any form of banking there are people out there who are trying to take advantage of mobile banking to scam you and get access to your money.
Banks will never ask for you mobile banking passwords or log in details by email, so any message you receive asking for this information is likely to be a scam. If you are suspicious in any respect then contact your bank to check if they have tried to contact you.
I have multiple accounts online and only feel secure if I telesign into them. This gives me the confidence that my account won't get hijacked or my credit card information isn't up for grabs. In fact I am not sure why 2FA has not become industry standard. This should be a prerequisite to any system that wants to promote itself as being secure.