Okay LogoOkay Logo
Book demo!

Okay Blog

Security matters.

artifact
02/08/2021

A Quick Update on Corporate Payments

SCA and its relation to corporate payments has changed a bit since we first wrote about it in 2020. In this short post, we take a quick look at today’s corporate payment environment, focusing on what trends we see occuring.

Fabien Ignaccolo
13/07/2021

Trust as Vulnerability: The Zero Trust Security Model and Mobile Applications

The widespread acceptance of mobile devices, cloud computing, remote work, and the like have brought the need for smarter-security to the top of the discussion charts. With attack surfaces having widened considerably, defences now need to be focused on users and assets. This was Okay’s perspective from the very beginning, but was also the premise of The Zero-Trust Security Model. Let’s see how they align, and where they apply for mobile apps.

Erik Vasaasen
02/07/2021

Banking-as-a-Service in 2021: the SCA Dilemma

Banking as a Service (BaaS) refers to the services and tools that allow financial institutions to adapt to the current digital shift by offering their customers an omnichannel experience. BaaS providers are the ones that build the web and mobile applications for these institutions so that customers may access their accounts digitally. But has this environment changed since the release of PSD2? Let’s take a look.

Erik Vasaasen
22/06/2021

Payment Trend Updates for June 2021

Okay is mainly concerned about security and Strong Customer Authentication. However, that doesn't prevent us from taking part in industry conferences or being a member of industry groups like the Emerging Payments Association, the Open Banking Excellence, l'Association du Paiement, or the Mobey Forum. Today, we take a look at a few of the hot topics that have been on the payment market table over the past year, with some insight as to where they may be headed.

Erik Vasaasen
18/06/2021

Can Strong Customer Authentication (SCA) be Web-based?

A question we often face during customer discussions is whether or not we support web browser-based authentication. Our answer so far has remained the same: we focus on mobile-based authentication, particularly by helping payment service providers (PSPs) secure customer authentication through their smartphone apps. In this post, we explain why this is the case and discuss some signs hinting at browser-based authentication becoming more popular in the future.

Erik Vasaasen
09/06/2021

Investing With Okay - Some Thoughts From Christen Bakke

Okay is here today because of the people who believed in our idea to make an affordable PSD2 Compliant Strong Customer Authentication solution. One of those people was Christen Bakke - investor, supporter, and financial industry expert. We reached out and asked him to reflect on what it was like getting involved in Okay, his thoughts on the industry, and where he sees it all headed in the future.

Christen Bakke
01/06/2021

Buy vs. Build: the Million-Euro SCA Question

Perhaps the most common question we get asked when it comes to SCA software is how to choose between going for in-house development or outsourced expertise. Since the Build vs. Buy debate is heavy and multifaceted, in this blog, we discuss a few of the pros and cons to help you and your team make the best decision.

Fabien Ignaccolo
26/05/2021

Reviewing Access Control Server Integration for SCA

What is an access control server, and why is it important when it comes to strong customer authentication? In this week’s post, we take a closer look at how these servers run, their limitations when it comes to outdated mobile operating systems, and the way Okay utilises them for our applications.

Ben Ogie
18/05/2021

Ozone API and Okay Tackle Compliance Demands

Compliance is a generally complex topic that takes from both the budgets and resources of banks and financial institutions. When talking specifically about the compliance related to the Revised Payment Services Directive (PSD2), the mandated Open Banking interfaces and Strong Customer Authentication (SCA) deliverables have proven to be the most significant undertakings.

Fabien Ignaccolo
05/05/2021

Why Should Issuers Care About SCA User Experience?

Today’s issuers live in a world marked by the increasingly challenging demands of regulators. With the “fear” of penalisation that comes with being non-compliant, it’s easy for these issuers to “choose” compliance over user experience. This we understand, especially when the consequences of non-compliance are so substantial. However, there are still consequences that come from forgetting about the user experience. What are they, and how much of an impact do they have?

Ingrid Nes
27/04/2021

PSD2 RTS SCA Compliance and Okay - Part 3 of 3

We have so far talked about compliance, requirements PSPs should be aware of, and the April 30th deadline regarding consumer protection rights. In the final instalment of our 3-part series on compliance, we wrap up with how the Okay solution can help you meet SCA PSD2 RTS compliance standards.

Erik Vasaasen
20/04/2021

PSD2 SCA Compliance and the April 30th Deadline - Part 2 of 3

When it comes to the PSD2, it has been difficult to keep up with the ever-changing compliance deadlines. We wrote about the latest 2021 deadlines in a previous post, and can only hope that they are here to stay. But amidst these countless dates, there is one deadline that you should be aware of: the April 30th deadline. Let’s get into it in part two of three of our mini-series on PSD2 SCA Compliance.

Erik Vasaasen
13/04/2021

PSD2 RTS SCA Compliance - Part 1 of 3

Compliance. A scary term for any payment service provider in a world of increasingly stricter regulations and requirements. So to make it just a little less scary, we are opening up the PSD2 RTS Compliance door and extracting some key points of interest. In part one of three, we start by covering the fundamental requirements Payment Service Providers (PSP) should be aware of if issuing cards or e-money payments and why said requirements are necessary.

Erik Vasaasen
30/03/2021

It’s 2021: Do You Need Two Channels for Strong Customer Authentication?

Okay has been running compliance audits since 2016. What did it look like back then compared to today? Are two channels for SCA really needed? This week we briefly explore the changing security environment of mobile phones related to identity verification.

Erik Vasaasen
24/03/2021

Announcing a Successful Re-evaluation of our PSD2 RTS SCA Solution

If you are working within Strong Customer Authentication Solutions, you will need to be evaluated by auditors in order to stay up to date and within regulation compliances. In this post, we talk about our own recent re-evaluation, including how we prepared and the final results.

Erik Vasaasen
16/03/2021

Re-enrolment, Customer Onboarding and Magic Links

What is the best way to go about re-enroling when logging into a banking app on a new device? Let’s take a look at the challenges and possibilities of SCA when finding yourself in this situation.

Erik Vasaasen
10/03/2021

What is Pay360 and Why Should You Tune In?

Pay360 is an annual event that gives major payment industry players the time and space to come together and brainstorm solutions to the industry's advances, opportunities and challenges. We highly recommending signing up for free at the link provided in this blogpost to ensure you don’t miss out.

Kaity Roberts
05/03/2021

Video Suggestions from the 2020 Black Hat Conference

Having just gone through the recently-released Black Hat Conference videos, we wanted to share some that stood out - particularly when looking at it from a payment and mobile security perspective.

Erik Vasaasen
03/03/2021

Remote Dial as a Fallback for PSD2 SCA

What is a reliable solution for users who do not have a smartphone? In this post, we review our remote dial option, aimed at helping those with accessibility impairments.

Erik Vasaasen
23/02/2021

SCA Deadlines Across Europe

We have spoken a lot about strong customer authentication (SCA) over the past year. However, the regulation has technically been in effect since mid-September of 2019. Like many major economic or financial overhauls, change takes time and most European countries have chosen to take a pretty gradual implementation approach. Now well into 2021, it is time for all European countries to fully enforce the updated SCA regulations. Let’s take a look at some of the deadlines.

Ingrid Nes
16/02/2021

The Future is Frictionless: Customers Care About Shopping, Not Payments

Okay wants to make the payment process as smooth as possible, specifically when it comes to customer authentication. While this is just one part of the payment process that can introduce friction, it is often where checkout abandonment occurs. In this post, we’ll try to describe some of the options that we’ve seen in the market regarding frictionless payments, including their strengths and weaknesses.

Erik Vasaasen
10/02/2021

Evaluations, Penetration Testing & Security Certifications: Lessons Learned

Over the last few years, Okay has gone through both security certifications and penetration testing. While they represent two uniquely different processes, each has greatly improved our product’s security, code quality and architecture. In this post, we discuss the importance of each, as well as what we've learned along the way.

Erik Vasaasen
03/02/2021

Which is More Secure: Apple’s iOS or Google’s Android?

Will our smart devices be able to implement the necessary security measures to keep up with an ever-increasing digital marketplace? If so, which ones will reign supreme? In this post, we reflect on an age-old question of iPhone vs Android device, well worth considering by all financial industry players, big or small.

Erik Vasaasen
25/01/2021

How to customise the Okay solution to your brand

Keeping your clients’ authentication secure is paramount when implementing an SCA Solution, however, keeping your brand consistent is also important, both for your brand and your clients’ user experience. This article explains how you can customise the Okay solution and add your brand’s logo and colours.

Matěj Horák
14/01/2021

2021 predictions for SCA

As we walk into the eye of the PSD2 storm, let’s take a moment to predict what 2021 may look like as the new SCA regulations begin to take effect across Europe.

Fabien Ignaccolo
22/12/2020

What is dynamic linking in PSD2?

When discussing Strong Customer Authentication (SCA) in the context of the EU’s Payment Services Directive 2 (PSD2), there is one topic that can be a bit confusing: What is dynamic linking, and why is it so important?

Erik Vasaasen
18/12/2020

Can SMS be used for Strong Customer Authentication (SCA) under the PSD2?

The short answer is: “Yes, but only for providing the possession factor, and even then there is room for discussing how suitable text messages are based on the official EBA opinions”.

Erik Vasaasen
01/12/2020

SCA in a world of Internet-of-Things payments

How people make payments have evolved greatly over the years. From cash, we have moved to paper cheques, to credit cards, to the current world of purely digital payment methods on the Internet. Where do we go from there?

Erik Vasaasen
18/11/2020

What is Strong Customer Authentication (SCA)?

Strong Customer Authentication - most often referred to as SCA - is a requirement in the Payment Services Directive 2 (PSD2) that was passed by the European Banking Authority (EBA) back in 2018. SCAs role in the PSD2 is to protect end-users when making payments.

Fabien Ignaccolo
12/10/2020

Navigating the Admin Panel

When managing an SCA solution, a good admin panel is an important part of the user experience as an admin. Okay strives to give you just that with our one-stop-shop admin panel.

Djordje Dragojlovic
23/09/2020

Security Vulnerabilities Through the Payment Process

For the last few years, Okay has been laser-focused on one particular part of the payment process: Strong Customer Authentication (SCA); the process to authenticate and authorize payments. However, the authentication and authorization are not the only vulnerable phases in the payment process; there are several other phases, where each phase has its own unique set of vulnerabilities.

Erik Vasaasen
08/09/2020

SCA On-premise or SaaS

With everything going into “the Cloud” these days, do we still need to assess SaaS Vs On-premise when it comes to SCA projects? Well, it seems so.

Fabien Ignaccolo
01/09/2020

Okay, GDPR and SCA

Over the last few years, GDPR has gotten a lot of attention in Europe. But, what is the GDPR, and how does it relate to Strong Customer Authentication (SCA)?

Erik Vasaasen
26/08/2020

News in hardware-based vulnerabilities

Recently Check Point Research made public that they had performed a security review of one of the leading mobile chipset manufacturers, Qualcomm Technologies. While the review is not yet public, they’ve apparently found more than 400 vulnerabilities in the Hexagon DSP that has been included in more than one billion chips provided by Qualcomm over the last few years.

Erik Vasaasen
07/08/2020

Money mules and laundering: When criminals get access to your account

In several previous articles, we’ve discussed how criminals can get access to your banking app, but what happens after they gain access is not a topic we have covered, until now.

Erik Vasaasen
30/07/2020

The history of PC malware and the future of mobile malware

Over the past few decades, different types of malware have regularly been in the news: Worms, trojans, spyware, backdoors, ransomware, RATs, adware, cryptojackers and viruses have all gotten their 5 minutes of fame. These types of attacks have become common enough that everyone working with computers is aware of their existence. While the history of personal computer-based malware goes back at least to the 1980s, the history of mobile malware began in the mid-2000s. Can we learn something from the malware of the past, and if we can, is it possible to predict something about the future?

Erik Vasaasen
23/07/2020

Accessibility and malware

Since 2009, when both Android and iOS gained accessibility support, it has been possible to use alternative input methods on the current main mobile operating systems. Today, the goal of accessibility is not just to make it possible for people with disabilities to use a smartphone; the use extends beyond that.

Erik Vasaasen
17/07/2020

Digital ID and SCA outside payment

If the current crisis does not spur growth in the adoption of digital identity and strong authentication everywhere, what will?

Fabien Ignaccolo
26/06/2020

Jailbreak and rooting: What are the real dangers?

Rooting or jailbreaking a mobile device is not that uncommon among mobile owners, either by choice or as a result of an attack. Having a rooted device most often come with a series of dangers for any smartphone owner.

Ben Ogie
19/06/2020

SCA to fight fraud - A real life example

Okay’s raison d’être is to fight fraud and financial crime, with a particular focus on protecting card-not-present fraud. Quite ironically, I was victim to such a fraud during lockdown - I couldn’t resist sharing. But more importantly, this sheds light on the very importance of SCA to protect all of us as eCommerce is accelerating

Fabien Ignaccolo
12/06/2020

SCA for eID – a marriage made in heaven?

As SCA gains footing within the banking industry it is only natural to address the topic of eIDs. A successful implementation of nation-wide - or even international - eIDs would benefit more than just the banking industry.

Erik Vasaasen
05/06/2020

Taking contactless to a new level

During the past few months, with lockdowns and physical venues closed, the need for more digital solutions was exacerbated. Tasks that previously were fairly simple - like proving who we are - suddenly became a process spanning not just days but weeks.

Fabien Ignaccolo
29/05/2020

Okay and United Biometrics join forces

To provide authentication security to the entire chain of corporate payment, from PC authentication to transaction validation and authentication on mobile, we are proud to announce our partnership with United Biometrics.

Fabien Ignaccolo
20/05/2020

Unlocking Strong Customer Authentication (SCA)

The original Payment Services Directive (PSD1) brought payments into the scope of regulation for the first time throughout most of Europe. But it is the second Payment Services Directive (PSD2) that will be known as the real game-changer; the one that created the market for new players to infiltrate traditional provider systems to give customers a different way to access services and get more from their data. I’ll explain the nature of the new players below, but my interest mostly lies in the second significant change introduced by PSD2, which was brought in to counterbalance this new openness: Strong Customer Authentication (SCA).

Fabien Ignaccolo
15/05/2020

Echoes of Stagefright: Samsung releases bugfix for all phones sold since 2014

That mobile manufacturers release security updates and bugfixes are nothing new, so what makes this bugfix noteworthy? To understand that we have to go back in time to 2015.

Erik Vasaasen
11/05/2020

How to Setup Two Factor Authentication with Okay

Though a cloud-based multi-tenant solution, Okay provides a simple way to integrate a secure two-factor authentication (2FA) in your app without the need to rewrite or build a security system yourself. This tutorial acts as your step by step guide on how to add 2FA to your service using the Okay solution.

Ben Ogie
30/04/2020

Containers, virtualization and sandboxes: What does it all mean?

Three of the most common terms used when talking about computer security in general and mobile security, in particular, are containers, virtualization and sandboxes. All three are technologies which in some way are being used to protect mobile applications. In this post, we’ll try to give a quick introduction to the various terms, and the meaning behind each of them. We’ll also shed some light their importance for secure customer authentication.

Erik Vasaasen
28/04/2020

How to evaluate the security of your mobile banking app - Part 1

Providing a secure app is paramount when offering a mobile banking experience to your clients. That means choosing the right set of service providers and being compliant with the current regulations, but it should also include security evaluations. You should evaluate the security of your mobile banking app thoroughly before launch and then continue evaluating the security as the app and the environment changes.

Erik Vasaasen
27/04/2020

How to evaluate the security of your mobile banking app - Part 2

This is the second part of a two-part series where we look at how you can evaluate the security of your mobile banking app. In the first part, we looked at how you can check for issues with communication and encryption, such as checking for man-in-the-middle style attacks. In this post, we’ll go deeper into the smartphone and the app itself.

Erik Vasaasen
06/04/2020

Lessons from 6 years and 11 patents

In early 2014 Okay applied for its very first patent. The patent was for a mechanism allowing computer users to use a phone, even a landline, as a second factor during a strong customer authentication. Since then we have applied for 10 more patents, both nationally and internationally. In the 6 years since that first patent application, we have learned quite a bit about how to apply for patents. In this post, I’ll try to summarise the most important lessons we have learned around the process of applying for a patent.

Erik Vasaasen
27/03/2020

SCA for Corporate Transactions

One of the biggest challenges with Strong Customer Authentication (SCA) is making the purchasing experience fast and frictionless for cardholders and bank-app users. So when we look at speed and convenience, corporations would be at the opposite end of the requirement spectrum of retail users. Why? Because the amounts can be much more significant, making security paramount. Ultimately, friction does indeed translate into more security when making a corporate transfer to make payment. So how does this all translates to SCA? Let's take a look.

Fabien Ignaccolo
27/03/2020

SCA Enrolment and Re-enrolment

Enrolment and re-enrolment are both critical stages in the SCA process. If the enrolment of a client is compromised in any way, all SCA challenges for that client can be compromised. That makes enrolment and re-enrolment the most security-sensitive part of the customer relationship.

Erik Vasaasen
27/03/2020

SCA Industry Challenges

When implementing Strong Customer Authentication (SCA), most organisations face a number of challenges. And after having discussions with different players across the PSD2 SCA industry, we have found that some are much more uniform than others, regardless of company size or type of bank. As a result, we have put together a list of the top 8 SCA challenges, which over the next 8 weeks, we will be diving deeper into one at a time.

Fabien Ignaccolo
16/03/2020

The Cost of SCA Integration

Minimising integration costs and the total cost of ownership is a concern voiced by most issuers when implementing an SCA project. Of course, any IT project involves integration and integration costs. SCA is no different in that regard, but it does have its own cost drivers. In this article, we look at ways for issuers to reduce SCA integration costs as much as possible.

Fabien Ignaccolo
16/03/2020

Innovative Malware Attacks

Security vulnerabilities are a major headache when providing secure digital services. With hundreds of vulnerabilities surfacing each year on Android alone, it can be challenging to stay on top of the trends. If that is the case, what channels can be used to stay up to date, and what are the current trends?

Erik Vasaasen
16/03/2020

The Mobile OS Headache

When providing strong customer authentication (SCA), smartphones with outdated OSs are one of the major hurdles that have to be addressed. Should these users be opted out, forced to update, or is it possible to find a different alternative altogether?

Erik Vasaasen
25/02/2020

SCA for Low-tech Phones and Fallback Options

Today it is easy to assume that everybody has a smartphone. It is also easy to assume that they are able, and willing, to use it for all tasks, including their online banking. Yet that is not always the case. A significant number of users either won’t or can’t use a smartphone for banking purposes. How do we deal with that, and how can we offer a PSD2 SCA compliant authentication method without a smartphone?

Erik Vasaasen
25/02/2020

The Taxonomy of SCA Challenges

Authentication in the banking industry continues to be a headache for many. While everybody would like to have a “one-size-fits-all” solution to SCA, experience shows that the authentication use-cases are too complex for that to be feasible. Let’s take a look at the different scenarios.

Erik Vasaasen
25/02/2020

2FA - The Risks of Sending OTP via SMS

Most organisations today provide two-factor authentication (2FA) to their users and customers. They do this to provide them with a more secure mode of accessing their accounts. 2FA has indeed helped most users keep their accounts more secure than they were before its inception. However, with the introduction of 2FA as a more secure way of authenticating, users came other issues that made it vulnerable to certain hacks.

Ben Ogie
25/02/2020

Expectations for Strong Customer Authentication in 2020

2019 was an exciting and challenging year in the payment and strong customer authentication industry. With New Year’s Eve just behind us, it is a good time to look forward to 2020, both for what we know will happen, and for some speculation on what might happen.

Erik Vasaasen
24/02/2020

SCA Security and 2FA

There is no denying that two-factor authentication (2FA) has significantly improved authentication security. But is 2FA enough to cover the requirements of strong customer authentication (SCA) under PSD2?

Fabien Ignaccolo
30/12/2019

PDS2 SCA Compliance Checklist

One of the aims of the Revised Payment Service Directive, more commonly known as PSD2, is to better protect consumers when they pay online. The requirement for a strong customer authentication (SCA) in a majority of these electronic payments is a key element of the regulation.

Ingrid Nes
19/12/2019

Enabling 2FA on Your Mobile App in Compliance with SCA PSD2

What is two factor authentication (2FA) and how does it protect your users? Read this week’s post to better understand how the Okay solution ensures all authentication requirements safely and securely.

Ben Ogie
17/12/2019

Protecting Users Against Unauthorized Transactions on Mobile Devices: Tamper Resistance Using Honeypots

The internet has made building great solutions that solve plenty of problems fairly easy. However, it does not come without its problems and security issues.

Ben Ogie
12/12/2019

Current Challenges for Banks and Fintechs

We made some assumption when designing Okay, before the Payment Services Directive 2 (PSD2) was even released. How correct were we? Are any still valid concerns? Read this week’s post to learn more about mobile choices, security and fintech investments.

Erik Vasaasen
02/12/2019

Adding PSD2 Compliance To Your Flutter App

With the recent success and trend in the Flutter SDK, it is no surprise that a good number of mobile developers will consider using Flutter as their preferred choice for cross-platform mobile app development.

Ben Ogie
22/11/2019

Part 2/2: What Can Mobile Malware Do?

In a previous post, we discussed what malware can do once it is active on your phone. But, how do end-users get malware in the first place? In this post we explain the sources of malware, and how to avoid it.

Erik Vasaasen
11/11/2019

Part 1/2: What Can Mobile Malware Do?

In 2019 there was a surge of malware, particularly in the mobile banking sector. According to the latest report from Checkpoint, the growth in banking-malware has been over 50% compared to that seen in 2018. As an example, Kaspersky reported that 438,709 of their mobile users encountered a total of 3,730,378 financial attacks - and this does not include other types of mobile malware. In this post, we’ll look at what malware is, why it works, and what it does once installed.

Erik Vasaasen
07/11/2019

Mobile Phones Under Attack from Bluetooth & Wi-Fi

As the use of mobile phones grow, so does our need for concern regarding the safety of user information. Here we discuss what causes mobile vulnerabilities, and how we at Okay are working to ensure safe execution environments.

Erik Vasaasen
07/11/2019

EBA Releases Opinion on SCA Elements

On June 21st 2019, the European Banking Authority published an opinion on the elements of Strong Customer Authentication (SCA) under the new PSD2 regulations.

Erik Vasaasen
07/11/2019

Auditing and Documenting

While documentation has already been a long-time requirement, the RTS has created new challenges for anyone involved in payments. Here we find a number of new articles that are more demanding than ever before when it comes to authorisation documentation.

Erik Vasaasen
07/11/2019

Secure Execution Environments

One of the most interesting developments with PSD2 over the last few years is that the regulatory authorities are more open to single-device solutions. This is made clear in article 9 of the RTS.

Erik Vasaasen
07/11/2019

The Revised Directive on Payment Services (PSD2) and it's Impact on Security

The Revised Directive on Payment Services (PSD2) has a wide range of objectives, which impacts nearly all financial institutions and a vast array of merchants. As long as you are located in Europe, or do transactions with customers located in Europe, the PSD2 will have some kind of impact.

Erik Vasaasen
07/11/2019

Traceability and Payment Transaction Security

Along with articles 29, 72 and 73 from the RTS, in the post we explore how seriously we take traceability and payment transaction security with our Single Device SCA service.

Erik Vasaasen
07/11/2019

Using Authentication Codes to Link Payments to the User

Article 4 and 5 of the RTS each uses the term “authentication codes” quite a bit. While it is not explicit in the regulation what an authentication code is, it is likely that most people will associate it with a TAN, or “Transaction Authentication Number”, which is a variant of a One Time PIN (OTP).

Erik Vasaasen
07/11/2019

Multi-factor Authentication: Knowledge, Inherence & Possession

The most traditional way of authenticating to a service is to use a username and a password. This is what is known as single-factor authentication. Although this is the most common authentication process, it’s not ideal for today’s standards and does not meet PSD2 SCA compliance regulations.

Erik Vasaasen
07/11/2019

What Can Live Forever? Android Root Attacks

The Hacker News describes how it is possible for malware to become persistent through exploiting vulnerabilities in the bootloader. But why is the bootloader such a tempting target for root attacks? Let’s have a look.

Didrik Steen Hegna
07/11/2019

Strong Customer Authentication Service

Announcing the general availability of our Strong Customer Authentication solution, Okay.

15/08/2019

Why Should You Care? PSD2 Explained

Ever since the European Commission proposed the revised PSD2 in 2013, there has been widespread disruption in the European payment market. New payment processors are popping up almost daily, and the big banks are moving fast to secure their positions. Will PSD2 be good? Why should you care? Here are some thoughts before the directive hits in September 2019.

Erik Vasaasen
12/02/2019

PSD2 SCA Compliance: Preparing for the Deadline

Whether a bank or payment service provider (PSP), it is time to prepare for PSD2 and strong customer authentication (SCA) requirements. With the Commission Delegated Regulation having set a deadline of March 14th, 2019, here is some information regarding regulations, deadlines, and our Okay services.

Trond Lemberg
15/11/2018

The Latest News in Overlay Attacks

Security vendors are fighting an endless battle against malware creators. Their most common goal is often finding new ways of stealing user credentials and passwords, so that criminals can hijack accounts and do fraudulent transactions. How can the Okay SCA solution protect your app from this? Read on.