Quote:Security vulnerabilities in the mobile applications of 30 financial services providers are putting the institutions and their customers at risk.
 
Exposed source code, sensitive data, access to backend services via APIs and more have been uncovered after a researcher downloaded Android various financial apps from the Google Play store and found that it took on average, just eight and a half minutes before they were reading the code.
 
Vulnerabilities including lack of binary protections, insecure data storage, unintended data leakage, weak encryption and more were found in banking, credit card and mobile payments apps and are detailed a report by cyber security company Arxan:  In Plain Sight: The Vulnerability Epidemic in Financial Mobile Apps.
 
 "There's clearly a systemic issue here – it's not just one company, it's 30 companies and it's across multiple financial services verticals," Alissa Knight, cyber security analyst at global research and advisory firm Aite Group and the researcher behind the study told ZDNet.