Mohammed AlZomai, from QUT's Information Security Institute, said one in five online transactions was vulnerable to obvious attacks despite added security methods such as SMS passwords being adopted.
Mr AlZomai said the study had found that the security threat had more to do with the usability of the SMS system and human error, rather than any technical security problem.
"In response to the growing threat to online banking security, most banks have implemented special methods for authenticating a transaction," he said.
"A typical method is sending a one-time-password via SMS to the customer's mobile phone for each transaction.
"This means the customer must manually copy the password from their phone in order to confirm the online transaction."
But Mr AlZomai said customers were failing to notice when the bank account number in the SMS message was not the same as the intended account number.
He said if this occurred it was a clear sign hackers had infiltrated the system.
As part of the study, QUT developed a simulated online bank and asked participants to play the role of customers and undertake a number of financial transactions using an SMS authorisation code.
Mr AlZomai said he then simulated two types of attacks - an obvious attack which was where five or more digits in the account number were altered, and a stealthy attack which was where only one digit was changed.
"It is worrisome that obvious attacks were successful in 21 per cent of cases," he said.
"And when transactions faced a stealthy attack, 61 per cent of attacks were successful."
He said this study showed that a significant number of users were unable to identify the attack.
"This is a strong indication that the SMS transaction authorisation method is vulnerable," he said.
"According to our study only 79 per cent of users would be able to avoid realistic attacks, which represents an inadequate level of security for online banking."
Mr AlZomai said while this study highlighted the importance for customers to be vigilant when they were banking online, banks also had a responsibility to their customers.
"We hope this research will allow online banks and other online service providers to be better prepared for these emerging risks."
Sandra Hutchinson | EurekAlert!
RWI/ISL-Container Throughput Index with minor decline on a high overall level
20.03.2018 | RWI – Leibniz-Institut für Wirtschaftsforschung
The RWI/ISL-Container Throughput Index started off well in 2018
22.02.2018 | RWI – Leibniz-Institut für Wirtschaftsforschung
In just a few weeks from now, the Chinese space station Tiangong-1 will re-enter the Earth's atmosphere where it will to a large extent burn up. It is possible that some debris will reach the Earth's surface. Tiangong-1 is orbiting the Earth uncontrolled at a speed of approx. 29,000 km/h.Currently the prognosis relating to the time of impact currently lies within a window of several days. The scientists at Fraunhofer FHR have already been monitoring Tiangong-1 for a number of weeks with their TIRA system, one of the most powerful space observation radars in the world, with a view to supporting the German Space Situational Awareness Center and the ESA with their re-entry forecasts.
Following the loss of radio contact with Tiangong-1 in 2016 and due to the low orbital height, it is now inevitable that the Chinese space station will...
Fraunhofer Institute for Organic Electronics, Electron Beam and Plasma Technology FEP, provider of research and development services for OLED lighting solutions, announces the founding of the “OLED Licht Forum” and presents latest OLED design and lighting solutions during light+building, from March 18th – 23rd, 2018 in Frankfurt a.M./Germany, at booth no. F91 in Hall 4.0.
They are united in their passion for OLED (organic light emitting diodes) lighting with all of its unique facets and application possibilities. Thus experts in...
A new scenario seeking to explain how Mars' putative oceans came and went over the last 4 billion years implies that the oceans formed several hundred million...
For the first time, an interdisciplinary team from the University of Basel has succeeded in integrating artificial organelles into the cells of live zebrafish embryos. This innovative approach using artificial organelles as cellular implants offers new potential in treating a range of diseases, as the authors report in an article published in Nature Communications.
In the cells of higher organisms, organelles such as the nucleus or mitochondria perform a range of complex functions necessary for life. In the networks of...
Animal photoreceptors capture light with photopigments. Researchers from the University of Göttingen have now discovered that these photopigments fulfill an...
19.03.2018 | Event News
16.03.2018 | Event News
13.03.2018 | Event News
21.03.2018 | Physics and Astronomy
21.03.2018 | Materials Sciences
21.03.2018 | Life Sciences