What is your Mobile security setup these days?

Nice. I've considered getting one. Sometimes I miss the '70s and/or '80s.

 

This is why I don't put any banking apps on my phone.

 

Same here, no security needed.

 

I, on the other hand, have 2 banking apps protected by 2 passwords that are obviously both different from each other and different from the PIN.
Password cannot be stored.
Phone screens,when apps are in use, are also disabled.

 

Sophos Intercept X. I use a banking app with fingerprint access. Alternative is three random numbers from a six digit pass code which, obviously, is not stored on the phone.

 

Yup, I have no reason to bank on my phone.

 

Thanks ever so much! lol!. I assure you, I am very modern. Usually. My apt. even has indoor plumbing and everything.

But seriously, I stopped doing telephone banking as the rates doubled. Might as well use my ridiculously expensive Internet for something., So this little phone is about as dead a target as they come. But my desktop got extra hardening via Sandboxie and other stuff.

I don't have total faith and trust in third parties anymore. Everyone around here already sees the almighty Password Managers falling like dominoes. It's ridiculous.

 

I know that secret services do have ways to unlocking many up to date Android phones, but regular pickpocket?
He either had very bad luck crossing paths with National level pickpocketer or somebody known to him plotted against him or he is simply full of ****.

 

I wasn't mocking you, I was totally serious.
Agreed on the password managers. There is nothing that can't be hacked with enough skill and determination.

 

Same over here, but any ideas about how they figured out the PIN to the Barclays banking app? This is quite a weird story. Perhaps it was simply a case of shoulder surfing.

 

I've seen someone in person figure out someone's PIN by looking at the fingerprints on their screen.

 

or so he said

Another possible way would be to just use SIM card, provided physical SIM card was unprotected by PIN, but they would still need the password to bank account.

 

Watched him do it.

 

Emsisoft Mobile Security
Protectstar Firewall AI Pro

 

I was referring to second quite mostly. I wanted to show that in this case method that you mentioned shouldn't apply. Method you mentioned is based on leaving fingerprints on screen during PIN code typing.
In this case there shouldn't be lock-screen-PIN-related fingerprints in the first place, because phone owner claims to rely on biometric entirely for phone lock screen unlocking.

 

Ok got it.

That said, the same guy I mentioned also unlocked the other person's phone by taking a picture of them and holding the 2 phones facing each other. Maybe things have improved since then, but I don't think that biometrics are a solution. In many cases they make it easier to get in. I won't even set up facial recognition.

 

I pay my gas bill online through clean and secure PC and just downloaded the company's app to my phone to see what it was like. Would it be risky logging in through phone which has no security ?

 

Apple’s iPhone Passcode Problem: Thieves Can Ruin Your Entire Digital Life in Minutes | WSJ
youtube . com/watch?v=QUYODQB_2wQ

Mods are nagging me to not post links, so you must remove spaces to reach WSJ video

Personally I don't put bank password on any password manager that is on my mobile. Only Kee PassXC on laptop for that.
Of course I have withdrawal limits set, so in worst case scenario thieves can't withdraw too much via banking app.

 

You can use use the following and then you don't need to add a space.

Code:

[PLAIN]YouTube link[/PLAIN]

 

The problem was not the phone, but the user, instead of removing the phone as a verified device, he went to sleep. As soon as you remove the phone or simply change the password, the phone gets locked, so apps do not really matter.

Probably not?! You can easily fake either, like a face using a filter, you can even look like Biden. Using different pin numbers is still the best method to gain time to block the phone. I have disabled biometrics for banking apps.

Bank app verifications are more secure than SMS, actually they are secure unlike SMS, which are not for the past 50 years (SS7), as seen recently, bypassing 2FA altogether.

 

It wouldn't even occur to me to use a banking app on my mobile phone. I do online banking, but only on my desktop PC.

 

I think some mix of biometrics and password/PIN is best, because it is still easier to eavesdrop on PIN code typing than on fingerprint.
In general it is better to limit number of PIN typing into banking apps and lock screen. Biometrics on lockscreen and not requiring banking app's PIN for small transactions can help with that, I believe.

 

Yes, I saw it yesterday on YouTube, and it's indeed disturbing that just by knowing your Passcode they can do so much damage. That's why we need better 2FA on mobile phones, with for example a YubiKey. And how about a device that can lockdown your smartphone from remote?

https://appleinsider.com/articles/2...and-passcode-get-stolen-youre-in-deep-trouble

 

AdGuard w/Firewall enabled
AdGuard VPN
Eset Premium

 

Emsisoft Mobile Security
Protectstar Firewall AI Pro
Protectstar Anti Spy (free) second opinion scanner