Random Pagan Verse:
For tread the Circle thrice about to keep unwelcome spirits out.
To bind the spell well every time, let the spell be said in rhyme.

Author Topic: Newly discovered Android malware able to steal money from online banking account  (Read 386 times)

Offline admin (OP)

  • Administrator
  • Hero Member
  • *****
  • Date Registered: Jul 2014
  • Posts: 1233
  • Thanked: 1 times
  • Karma: +0/-0
    • View Profile
Loading...

New Android malware was discovered, able to steal money from online banking accounts, and hide SMS notifications coming to confirm financial transactions.

This new malware detected by Dr.Web as the Android.SmsBot.459.origin trojan infects users via SMS spam, which, to be more convincing, in some cases even uses the phone owner's name. The spam SMS message contains a link, which, if opened, will forcibly download the trojan's APK file on the user's device.

The only way to actually get infected is to tap and open the APK file, so if a Web page just downloads an Android app on your phone without asking you anything, don't even think of opening it. Ever!

The trojan masquerades as a legitimate app

For users who are so "unlucky" to tap and open the APK, the trojan will mask itself as an app coming from a well-known source, in this case, as a client application for an advertising website in Russia.

If the user agrees to install it, the app will immediately ask for admin privileges with the purpose of "getting video codec access." This message is quite pushy and won't go away until the user clicks "Activate." As a side note to the article, popups that cannot be closed should be another sign that an app contains malware.

Once successfully installed and with admin privileges, the trojan now starts operating with its C&C server. The first thing it will do is to send all kinds of details about the user's phone, beginning with its IMEI, model name, system language, mobile phone number, OS version, and so on.

The malware currently targets Russian users

Once this data is on the C&C server, the Android.SmsBot.459.origin trojan is then instructed to scan the device for a list of banking applications. For now, this trojan only scans for applications catering to Russian banks.

If banking applications are found, using pre-configured operations, the trojan will get the user's account balance, trying to discover if they have any available funds.


 

 

Gmail Update "Inbox by Gmail android app" with New Snooze Options

Started by internet police

Replies: 0
Views: 745
Last post July 17, 2015, 03:03:18 PM
by internet police
New Windows Phone Invented with Windows PE on Android Device

Started by guruslodge

Replies: 0
Views: 464
Last post January 22, 2018, 04:36:03 AM
by guruslodge
Apple Updated Apple Music for Android with New download to SD Feature

Started by legendguru

Replies: 0
Views: 668
Last post February 04, 2016, 11:37:43 AM
by legendguru
Google Roll out Science Journal Android App for Science Experiments

Started by legendguru

Replies: 0
Views: 462
Last post May 23, 2016, 12:45:33 AM
by legendguru
step by step guide on Installing Applications and Games On Android Devices

Started by ctytravellink

Replies: 0
Views: 571
Last post July 20, 2014, 02:40:37 AM
by ctytravellink
Google to rollout Android Apps and the Google Play Store on Chrome OS

Started by yungcrux

Replies: 0
Views: 365
Last post May 20, 2016, 09:35:28 AM
by yungcrux
Google removed Six Malicious Android Apps from the Google Play Store

Started by legendguru

Replies: 0
Views: 431
Last post June 24, 2016, 01:21:26 AM
by legendguru
Lets Ride-Google Updates Maps for Android and iOS with New Ride Services Options

Started by legendguru

Replies: 0
Views: 384
Last post January 13, 2017, 12:55:43 PM
by legendguru
Android Phone Makers Vows to Copy Apple’s iPhone X Facial Recognition Feature

Started by Nairaland

Replies: 0
Views: 1171
Last post October 09, 2017, 11:37:15 AM
by Nairaland
Microsoft to Launch Dialer Android free call App for low internet signal areas

Started by internet police

Replies: 0
Views: 348
Last post October 10, 2015, 12:15:25 PM
by internet police