In a recent update to the HSBC app they’ve added a screen to prevent you from using the app unless you use the default (google) keyboard.
They do a similar thing if you have an accessibility service running that can access the screens content. A fair enough security warning if you’ve happened to install a dodgy keyboard app, but highly frustrating when using an open source alternative that enhances the security and privacy over the default option (HeliBoard in my case).
I haven’t found a way to circumvent the page yet. It would be useful if Android allowed you to block the permission to query all packages, but alas.
banks will do everything in their power to restrict who can use their services in the name of security but are absolutely fine with 6-char password size limits and SMS 2FA
They are in an illusion where their backend is absolutely perfect, but third party apps like open source keyboards implement spyware that spies on users predictable bank passwords. (FlorisBoard is the biggest predator)
Move to a credit union. HSBC is terrible.
Yeah, I don’t really have a reason to stay with HSBC. A responsible me would look for a bank with better credit card interest. Might as well shop around for a new one.
If my bank’s app ever forces me to choose between my keyboard of preference and their app, it’s their app that’s getting uninstalled.
I think it’s a great option to warn people about. Or even force switching of the keyboard for that one app. But it shouldn’t require you to set a system sitting.
The thing is, they’re one of the biggest banks in the eastern hemisphere.
Have the security risks associated with third party keyboards been mitigated somehow? I made the decision not to use them years ago and have never revisited it.
Of course there will always be some risk. But HeliBoard and some other keyboard apps are open source and can be audited. I’d trust (I know, you should do your own homework) the more popular ones have a lot of eyes in them.
I’m not sure about this app especially, but I hate that my bank personally has so many restrictions on the app usage but I can also just use a web browser on God knows what with who knows what extensions installed and they’re all like sure, come on in!
Considering that HSBC is remarkably evil, even compared to other major international banking corporations, this might be a good nudge to stop doing business with them.
