Fake ID Vulnerability for Android
(August 1, 2014) There have been some articles published recently identifying a security flaw (called FakeID) in Google's mobile operating system.
What You Should Know:
This flaw puts malware into Android™ applications that masquerades as a trusted app, which could result in cyber-criminals taking control of the operating system. As reported in the media, this flaw has been present in Android OS versions dating back to version 2.1. Although Google issued a patch in April as part of a 4.4 KitKat update, given the fractured nature of the Android ecosystem, it will take some time for hardware manufacturers to incorporate this fix into consumer devices. The Google patch continues to make its way into Android devices, there are no available counter measures that a mobile banking application (nor any other type of mobile application) can implement to solve this problem.
What You Should Do:
Only download content from trusted sources. Our Mobile banking application should only be downloaded from Google Play and Apple’s App Store. Contact FHB to disable your mobile and/or online banking account if your smart phone has been infected. Install anti-virus app to help protect your phone.
If you should become a victim of identity theft click here to find out what to do.
Android and Google Play are trademarks of Google Inc.
App Store is trademark of Apple Inc.