AI security threat model:
A comprehensive approach
From threat model to mitigation plan: How to secure AI inside mobile apps
AI is now inside the app—not just behind it. As organizations embed AI directly into mobile experiences, the number and complexity of threats have exploded.
This new paper by Dr. Anton Tkachenko introduces a complete AI security framework for identifying, categorizing, and prioritizing risks across device, model, application, and agent levels. It also shows how Promon’s protection layers map to these threats to defend against real-world AI attacks.
What you'll learn
- The 49 key AI threats targeting on-device and embedded models
- How to classify and prioritize AI risks across your app ecosystem
- Practical defense strategies based on OWASP, MITRE, and NIST frameworks
- How Promon’s Shield, Data Protect, and Code Protect mitigate the most critical AI threats
-
Mobile face authentication security checklist for banks in Asia
A practical checklist for Asian banks reviewing deepfake, biometric spoofing, and camera-injection risk in eKYC, login, and account recovery.17 Jun 2026
-
AI-powered mobile app attacks: What app shielding can and can't stop
How has AI changed mobile app security? What does AI do to help mobile app attackers? And are there limits on the power of app shielding to protect against them?11 Jun 2026
-
PSD3 mobile evidence checklist: 10 questions banks and PSPs should answer now
A practical self-assessment for fraud, security, compliance, and digital teams preparing the mobile channel for PSD3 and the EU PSR2 Jun 2026
-
Deepfake fraud in Asia: Why banks need strong face authentication and runtime protection
Deepfake resilience in mobile banking depends on two control layers working together: strong biometric checks and even stronger protection around the app, device, and camera path.26 May 2026
-
Why mobile malware detection must move beyond scanning
Malware scanning still matters. But modern mobile threats increasingly exploit environment and runtime manipulation beyond the reach of scan-first defenses.21 May 2026
-
What’s new in PSD3 compared to PSD2? 7 changes banks and PSPs should watch
PSD3 isn't PSD2 with updates. It broadens key requirements and raises the bar on both protection and the evidence banks and PSPs need when payments are challenged.19 May 2026
-
Coretax RAT malware: A rising threat to banking security in Southeast Asia
Discover the rising threat of Coretax RAT malware in Indonesia's banking sector, how it works, and what defense is possible against this emerging cyber risk.11 May 2026
-
PlayPraetor malware: Why banking apps need protection from the inside out
PlayPraetor abuses legitimate Android features to steal credentials, hijack sessions, and support on-device fraud. It's another reason why banks need runtime protection embedded inside the app itself.6 May 2026
Blogs
Keep up with the latest developments in iOS and Android security, code obfuscation, compliance, API protection, and more.
View allGet expert mobile app security insights straight to your inbox
Receive the latest blogs, guides, and threat intelligence from our team.
