BNF’s mobile app is essentially training customers to be vulnerable to social engineering attacks.
Key issues:
– Shows "upgrade required" alerts even when running the latest version
– Provides incorrect instructions for basic functions like card activation
The real problem: This confusion creates perfect conditions for phone-based phishing attacks. When your own bank’s app is confusing and shows false alerts, how are customers supposed to distinguish legitimate communication from scams?
Over 90% of cyber threats in 2024 used social engineering. Banks with these kinds of design flaws are sitting ducks.
Full investigation with screenshots and analysis: https://www.alanbonnici.com/2025/09/bnf-bank-and-gift-of-phishing.html
#BNFBank #BankingSecurity #Cybersecurity #PhishingPrevention #Malta #FinTech #TTMO
How a Bank's Poor Mobile App Design Creates Perfect Phishing Opportunities
byu/chribonn inmalta
Posted by chribonn
2 Comments
You should try BOV, I believe it has no 2FA for example.
Somehow this bank always gave me the impression that it’s very amateurish despite it’s initial modest success when it entered the Maltese market.