Serious Discussion One more reason for logging-in to my bank account using only PC

[Trident]

I have doubts it is using any heuritisc; if using, it can find the app fine, even if not installed from the store; not all standalone apk is malicious.
What makes sense more, it is checking some metadata related to Google store, which get added upton install from there.

it is a simple heuristic with 2 boolean switches

Something like

yada yada yada (check this, check that)

If (isSideloaded && canDrawOverApps) {invokeBlockAccess()}.

It still classifies as heuristic because it is not a universal rule set in stone, rather it is a “good enough for the task” rule that the developer came up with and implemented.

So, in short, the banks will cover their losses via crowdsourcing via fees & charges. All of us cover the banks' losses because some users get fooled.

I wouldn’t be worried about the banks, none of the major or even minor bank/virtual bank/building society is close to bankruptcy.
They are already saving up on interest rates, staff, offices, support and many other costs.
They generally do not charge users fees here (unless when they offer bells and whistles like insurances and so on), but there are many charges for businesses, transaction disputes and so on.

 

[Zero Knowledge]

The problem with scams is that they appeal to basic human nature GREED. No one is going to be offering you a random cold call 1000% interest or profit for nothing.

And in the case of sending crypto to cold callers/SMS fraud/Social Media posts it's even dumber.

In this case people can be blinded by money, and it's not the banks fault unless they keep let it happening which they do so it kind of is!

It's kind of like problem gamblers suing the casinos and betting companies after losing it all. No personal responsibility in today's society, it's all someones else's fault.

 

[Parkinsond]

The problem with scams is that they appeal to basic human nature GREED. No one is going to be offering you a random cold call 1000% interest or profit for nothing.

And in the case of sending crypto to cold callers/SMS fraud/Social Media posts it's even dumber.

In this case people can be blinded by money, and it's not the banks fault unless they keep let it happening which they do so it kind of is!

It's kind of like problem gamblers suing the casinos and betting companies after losing it all. No personal responsibility in today's society, it's all someones else's fault.

True; it needs no malicious app on my phone to be scammed.

I saw myself a middle-aged lady from rural area crying next to the ATM machine while waiting for my turn to make a withdrawal; she was scammed by a phone call asking for her banking data for a claimed data update.
After the call, she tried to withdraw her small salary, when she found balance was zero.

 

[Parkinsond]

it is a simple heuristic with 2 boolean switches

 

[Wrecker4923]

Thanks. That's the Play Integrity API:

which includes the capability to return this:

Risky access by other apps: The "appAccessRisk" Verdict helps you determine whether apps are running that could be used to capture the screen, display overlays, or control the device (for example, by misusing the accessibility permission).

One of my bank / some govt apps do similar things: refuse to run while Bitwarden's accessibility option is on.