This borders on invoking Murphy's Law: Most community banks haven't yet rolled out mobile banking, yet these institutions are the most likely to be hit by smishing, an emerging security risk that targets the mobile channel. And tech weapons have only limited powers to stop it.

"[Smishing] is like if I walked up to your door, introduced myself as being from a bank and asked you for your personal credentials. If you're foolish enough to give that information to me, there's nothing the bank can do about it," says Joram Borenstein, senior manager of RSA, the security division of EMC. "The only difference is smishing is happening through cells phones and PDAs."

Subscribe Now

Access to authoritative analysis and perspective and our data-driven report series.

14-Day Free Trial

No credit card required. Complete access to articles, breaking news and industry data.