Author Topic: Newly discovered Android malware able to steal money from online banking account  (Read 311 times)

0 Members and 1 Guest are viewing this topic.

Online admin

  • Administrator
  • Hero Member
  • *****
  • Posts: 1214
    • View Profile
Loading...

New Android malware was discovered, able to steal money from online banking accounts, and hide SMS notifications coming to confirm financial transactions.

This new malware detected by Dr.Web as the Android.SmsBot.459.origin trojan infects users via SMS spam, which, to be more convincing, in some cases even uses the phone owner's name. The spam SMS message contains a link, which, if opened, will forcibly download the trojan's APK file on the user's device.

The only way to actually get infected is to tap and open the APK file, so if a Web page just downloads an Android app on your phone without asking you anything, don't even think of opening it. Ever!

The trojan masquerades as a legitimate app

For users who are so "unlucky" to tap and open the APK, the trojan will mask itself as an app coming from a well-known source, in this case, as a client application for an advertising website in Russia.

If the user agrees to install it, the app will immediately ask for admin privileges with the purpose of "getting video codec access." This message is quite pushy and won't go away until the user clicks "Activate." As a side note to the article, popups that cannot be closed should be another sign that an app contains malware.

Once successfully installed and with admin privileges, the trojan now starts operating with its C&C server. The first thing it will do is to send all kinds of details about the user's phone, beginning with its IMEI, model name, system language, mobile phone number, OS version, and so on.

The malware currently targets Russian users

Once this data is on the C&C server, the Android.SmsBot.459.origin trojan is then instructed to scan the device for a list of banking applications. For now, this trojan only scans for applications catering to Russian banks.

If banking applications are found, using pre-configured operations, the trojan will get the user's account balance, trying to discover if they have any available funds.



 

Gmail Update "Inbox by Gmail android app" with New Snooze Options

Started by internet police

Replies: 0
Views: 660
Last post July 17, 2015, 03:03:18 PM
by internet police
Apple Updated Apple Music for Android with New download to SD Feature

Started by legendguru

Replies: 0
Views: 580
Last post February 04, 2016, 11:37:43 AM
by legendguru
Google Roll out Science Journal Android App for Science Experiments

Started by legendguru

Replies: 0
Views: 342
Last post May 23, 2016, 12:45:33 AM
by legendguru
step by step guide on Installing Applications and Games On Android Devices

Started by ctytravellink

Replies: 0
Views: 407
Last post July 20, 2014, 02:40:37 AM
by ctytravellink
Google to rollout Android Apps and the Google Play Store on Chrome OS

Started by yungcrux

Replies: 0
Views: 270
Last post May 20, 2016, 09:35:28 AM
by yungcrux
Google removed Six Malicious Android Apps from the Google Play Store

Started by legendguru

Replies: 0
Views: 325
Last post June 24, 2016, 01:21:26 AM
by legendguru
Lets Ride-Google Updates Maps for Android and iOS with New Ride Services Options

Started by legendguru

Replies: 0
Views: 275
Last post January 13, 2017, 12:55:43 PM
by legendguru
Android Phone Makers Vows to Copy Apple’s iPhone X Facial Recognition Feature

Started by Nairaland

Replies: 0
Views: 1061
Last post October 09, 2017, 11:37:15 AM
by Nairaland
Microsoft to Launch Dialer Android free call App for low internet signal areas

Started by internet police

Replies: 0
Views: 257
Last post October 10, 2015, 12:15:25 PM
by internet police
Whatsapp Update its android app with rich link preview and direct share features

Started by admin

Replies: 0
Views: 677
Last post November 26, 2015, 11:41:42 AM
by admin