High riskBank & Payment Scams

Fake Banking App Scam

A counterfeit banking or finance app, often spread through an unofficial app store, an advert or a link, mimics a real bank to capture your login and one-time codes. Some fakes are designed to harvest credentials directly, while others install malware that intercepts your genuine banking. Once attackers have your login and codes, they may attempt to access your real account.

Quick verdict

Risk level
High risk
Scam type
Malicious app scam
Main red flag
You were prompted to install a banking app from a link, advert or unofficial store rather than the official app store or your bank's verified page.
What to do first
Do not enter any details. Only install banking apps from the official app store, ideally via a link on your bank's verified website.

What this scam usually looks like

A counterfeit banking or finance app, often spread through an unofficial app store, an advert or a link, mimics a real bank to capture your login and one-time codes. Some fakes are designed to harvest credentials directly, while others install malware that intercepts your genuine banking. Once attackers have your login and codes, they may attempt to access your real account.

Example message pattern

Example pattern — not a real report
Example pattern: "Your banking app is out of date and access will be suspended. Update now to keep your account active: [suspicious link]. Download the new secure version and log in to confirm your identity."

This is a fictional, anonymised example used to illustrate the pattern. It is not a verified real message, and any names are used only to show how the scam typically reads.

Red flags to watch for

  • A prompt to download or update a banking app from a link, advert or store other than the official app store.
  • An app with few reviews, a developer name that does not match the bank, or recent creation despite claiming to be an established bank.
  • The app immediately asks for your full login, card details and one-time codes, or requests unusual permissions for a banking app.
  • Messages claiming your app is out of date or suspended and urging you to install a new version through a provided link.
  • Spelling errors, low-quality logos, or a layout that looks slightly different from your bank's genuine app.

What to do

  • Install banking apps only from the official app store, and ideally follow a link from your bank's verified website.
  • Check the developer name, reviews and download count, and confirm the app is published by your actual bank.
  • Be cautious of any app or message asking for one-time codes outside your normal, expected login flow.
  • Keep your device's operating system and security settings up to date, and remove apps you cannot verify.

If you already clicked or replied

  • Delete the suspicious app, then run a security scan and check your device for unfamiliar apps or permissions.
  • Contact your bank immediately using its official number to report it and ask them to secure your account.
  • Change your banking password from a device you trust, and review recent transactions for anything unfamiliar.
  • Enable or review additional security on your account, and watch closely for further suspicious activity.

What not to do

  • Do not install a banking app from a link, advert or unofficial store you cannot verify.
  • Do not enter your login or one-time codes into an app you are unsure about.
  • Do not ignore a fake app you installed, even if nothing seems wrong yet, as malware can act quietly.

Similar scams

High risk Bank & Payment

Fake Bank Alert Text Scam

This scam sends a text claiming suspicious activity on your account, then steers you to a fake login page or a 'fraud agent' who pressures you to move money.
High risk Text Message

Two-Factor Code Text Scam

In this scam a fraudster triggers a genuine two-factor or one-time code to your phone, then poses as support staff or a contact to pressure you into reading it back so they can take over your account.
Medium risk Text Message

QR Code Scam

This scam uses a malicious QR code, often a sticker over a real one or sent by text, that leads to a fake payment or login page or prompts a harmful app install.

Frequently asked questions

How can a fake banking app look so convincing?
Counterfeit apps often copy a real bank's name, logo and layout closely, so they can be hard to tell apart at a glance. The safest check is the source: only install from the official app store via your bank's verified site, and confirm the developer name.
What does a fake banking app actually do?
Some fakes capture your login and one-time codes to access your real account, while others install malware that quietly intercepts your genuine banking. Either way, the goal is usually to gain access to your money, so any unverified app is a serious risk.
How do I know I have the genuine app?
Start from your bank's official website and follow its link to the app store, then check the developer name matches the bank, along with reviews and download numbers. Avoid links in messages or adverts that prompt you to update or reinstall.
I think I installed a fake app. What now?
Delete it, scan your device, and contact your bank using its official number to secure your account. Change your password from a device you trust and review recent transactions. Acting quickly limits the chance of any account access being misused.

Last reviewed: June 2026

Disclaimer: This page provides educational information only to help you recognise common scam patterns. It is not legal, financial, cybersecurity, or law enforcement advice, and it does not confirm whether any specific message, company, or person is genuine or fraudulent. When in doubt, contact the official organisation directly and report concerns to your local authorities.