Fundamental and basic is having a PIN on the phone.
Thereās a bloke down the market can unlock em for a tenner, so, no
I am skeptical. Up-to-date phones, lock screens canāt be cracked. Your market due could be wiping them to āfactory freshā - but that doesnāt count, because the data is wiped.
1 Like
Itās a real thing. Get out a bit, most small towns have these dodgy places.
Also many people donāt treat their phone pin with the same level of security they do their bank pin.
I really cannot see any argument against. If itās really that unnecessary to have any layer of security to access the app, then why not strip out these options on the iOS version too?
I donāt doubt dodgy places exist; what I doubt is that they can unlock all phones.
That they can unlock some, the lesson is that people should apply their security updates.
The rest of the time, they can Iām sure wipe a phone to make it usable - but thatās not the same as unlocking.
In any case, youāll be pleased to know that Monzo, as part of the whole SCA changes thing, are planning to update the app so that PIN locking will be an option on Android as well. See : Sneak Peek: Updated App Lock - #40 by Jami
2 Likes
No they canāt unlock ALL phones iām sure.
Thank god for that, I was just pricing up a small lockbox to carry my phone round in
Out of curiosity, what phone do you have?
If I had a million dollar empire, Iād be more than happy to put money in Monzo. Itās a proper bank folks, if weāre all OCD about Monzo security then change banksā¦simple! Look after your phone, pin lock it and keep it safe.
Iām worried that this thread is in Business Banking. What of us schmucks without a Business Account?
OK, to be fair, Iām more worried that someone with a Business Account doesnāt have good security setup on their phone. Biometric/PIN(password), and 2FA should put enough of a block in the path of any would be charlatan. A third piece of hardware adds no additional security, just the illusion of it.
Know how you have to take your shoes off when you fly? Ever realised that not every airport does it? False security, itās an illusion.
Iāve just tried this - it will ask for a PIN to verify change to the reference, or if you have touch/face ID enabled, it will ask for that instead.
3 Likes
What those people mean by unlock is carrier unlock. Theyāll have you open your phone so they can unlock it from your carrier.
Trust me, the guy with the corner stand cannot āunlockā your phones security.
5 Likes
If the FBI pay upwards of $1m to unlock a phone, the bloke at your market canāt do it for a tenner.
Unlocking the carrier is very different to unlocking a phoneās encryption.
1 Like
yeah, they can.
Ok, well They could create a new payee with same name but different bank details then delete your existing one.
Oh and so cute how you can say the simplest thing in criticism of monzo and everyone gets all defensive over them. 
monzo is great, but this is a big hole in the security, which is why they have now confirmed they are plugging it
Itās not that people are defensive, itās just your arguments make no sense
SCA requires authentication every 90 days, thatās why itās changing. Would the regulator have allowed their security as it has been for years if it wasnāt safe?
6 Likes
Not seen a troll like this here before.
Time to mash that MUTE option!
Prove it.
3 Likes
Just tried this aswell - so yes, someone with access to your Monzo account could legitimately edit one of your contact payee details. (You can add a new bank, then delete the existing one)
But that wonāt affected any existing or scheduled regular payments, and you still have to pin/biometrically verify the payment before it goes through - and you still have the opportunity to verify the details are correct before this happens.
But if that is a true concern, a PIN or biometric lock on the app would prevent someone from having access to do this.
Look guys, itās fine they are fixing this massive hole, Iām not that worried any more so long as itās quick. Iām happy not quite āstanā happy yet though 
