{"id":9757,"date":"2017-12-11T11:19:12","date_gmt":"2017-12-11T19:19:12","guid":{"rendered":"https:\/\/evolvemga.com\/?p=9757"},"modified":"2020-06-11T18:13:24","modified_gmt":"2020-06-12T01:13:24","slug":"spinner","status":"publish","type":"post","link":"https:\/\/evolvemga.com\/spinner\/","title":{"rendered":"Security tool, Spinner, Detects Security Flaw in Banking Apps"},"content":{"rendered":"[vc_row type=”in_container” full_screen_row_position=”middle” scene_position=”center” text_color=”dark” text_align=”left” overlay_strength=”0.3″ shape_divider_position=”bottom”][vc_column column_padding=”no-extra-padding” column_padding_position=”all” background_color_opacity=”1″ background_hover_color_opacity=”1″ column_shadow=”none” column_border_radius=”none” width=”1\/1″ tablet_text_alignment=”default” phone_text_alignment=”default” column_border_width=”none” column_border_style=”solid”][vc_column_text]A team of researchers at University of Birmingham have developed a security tool called Spinner that has detected critical vulnerabilities in 9 banking apps that are operated by Bank of America and HSBC, which can put more than 10 million users at risk of their passwords and pins being hacked.<\/p>\n
Fortunately, the vulnerabilities were corrected, but according to researchers, if exploited, could have let hackers connect to the same network as the victim \u2013 such as a public Wi-Fi network in a workplace or coffee shop – to perform a so-called Man in the Middle (MitM) attack and retrieve usernames, passwords or pin codes.<\/p>\n
The flaw in security could have let hackers decrypt and modify any operation within the app as the user, which would ultimately allow them to phish for the user’s credentials.<\/p>\n
Evolve MGA<\/span><\/a>‘s cyber policy, EVO 3.0, covers policyholders in the event their cloud data is hacked, lost, or stolen. Contact<\/a> us to learn more about buying a policy before an event happens to your business.<\/p>\n