- Bargaineering - http://www.bargaineering.com/articles -

Mobile Banking Safety & Security Tips

I’ve had a Palm Treo [3] for almost two years and one of the nice things about having a smartphone is that it gives me the ability to go online whenever I have cell service. It’s saved my butt on more than one occasion.

With the internet at my fingertips, one thing I’ve done more often is check my banking information through the phone’s web browser. It’s a quick way to see if checks have cleared without calling the bank and navigating the painful IVR systems. However, I’ve always done this without much concern for security.

I know for a fact that the browser doesn’t show a lock icon when communication is encrypted, as it does whenever you use a regular web browser. I just assumed it was. While a mistake, it hasn’t hurt me (communication is encrypted, even if my phone doesn’t explicitly tell me), but I saw this Bankrate article on mobile banking safety [4] and wanted to bring up the topic.

There are three ways you can bank through your phone:

SMS: SMS stands for short messaging service and you’re probably most familiar with its incarnation as text messages. When you receive alerts via text message, it’s sent across SMS. If you’ve started using text messages to send codes to your bank to get your balance or limits or whatever, notice that it never contains any sensitive information like account numbers. Bankrate warns that phishing attempts, much like they always have in email, have started never send out data.

Mobile Web: Mobile Web refers to using your phone’s internet browser to navigate to a bank’s website. The security here is just as strong as if you visited the website from your own computer. So avoid those phishing emails, don’t click on links (go to the website directly or through a saved bookmark), and you should be fine.

Downloaded Applications: These are actual programs that are built by banks and installed on your phone. They’re faster than the web interfaces and the most secure of all three methods because the bank built it themselves to interface with their servers. The only risk here is that the program may store your sensitive information on the phone or that you downloaded a hacked program (unlikely, especially if you go to the bank to get it).

The article gives some more tips on how you can better secure your phone (locking it with a password, no automatic logins, etc.) and they’re good steps to take if you do anything financially sensitive through your phone.

)Photo: gserafini [5])