Consumer group calls for improvements in bank security following an investigation into potential vulnerabilities.

Which? has called on banks to urgently address online security vulnerabilities that could leave customers vulnerable to scammers. The consumer group conducted a security assessment of the mobile apps and websites of 13 current account providers, highlighting concerns in several banks’ security arrangements.

In particular, TSB and the Co-operative Bank were found to have significant gaps in security. TSB received the lowest score for mobile app security (54%) due to issues with how sensitive data is handled, including storing user credentials in ways that could make them accessible to other apps. The Co-operative Bank also showed weaknesses, such as failing to require two-factor authentication and allowing weak passwords.

While banks like Starling Bank and NatWest/RBS scored highest in the security rankings, Which? emphasized the need for all banks to enhance their security measures to prevent fraud, particularly as online banking becomes more widespread.

Which? is urging banks to fix these vulnerabilities to protect customers from scams and ensure the security of online banking services.