Widget powered by WhatstheScore.com

Author Topic: Newly discovered Android malware able to steal money from online banking account  (Read 260 times)

0 Members and 1 Guest are viewing this topic.

Offline admin

  • Administrator
  • Hero Member
  • *****
  • Posts: 1159
    • View Profile

New Android malware was discovered, able to steal money from online banking accounts, and hide SMS notifications coming to confirm financial transactions.

This new malware detected by Dr.Web as the Android.SmsBot.459.origin trojan infects users via SMS spam, which, to be more convincing, in some cases even uses the phone owner's name. The spam SMS message contains a link, which, if opened, will forcibly download the trojan's APK file on the user's device.

The only way to actually get infected is to tap and open the APK file, so if a Web page just downloads an Android app on your phone without asking you anything, don't even think of opening it. Ever!

The trojan masquerades as a legitimate app

For users who are so "unlucky" to tap and open the APK, the trojan will mask itself as an app coming from a well-known source, in this case, as a client application for an advertising website in Russia.

If the user agrees to install it, the app will immediately ask for admin privileges with the purpose of "getting video codec access." This message is quite pushy and won't go away until the user clicks "Activate." As a side note to the article, popups that cannot be closed should be another sign that an app contains malware.

Once successfully installed and with admin privileges, the trojan now starts operating with its C&C server. The first thing it will do is to send all kinds of details about the user's phone, beginning with its IMEI, model name, system language, mobile phone number, OS version, and so on.

The malware currently targets Russian users

Once this data is on the C&C server, the Android.SmsBot.459.origin trojan is then instructed to scan the device for a list of banking applications. For now, this trojan only scans for applications catering to Russian banks.

If banking applications are found, using pre-configured operations, the trojan will get the user's account balance, trying to discover if they have any available funds.


Gmail Update "Inbox by Gmail android app" with New Snooze Options

Started by internet police

Replies: 0
Views: 607
Last post July 17, 2015, 03:03:18 PM
by internet police
Apple Updated Apple Music for Android with New download to SD Feature

Started by legendguru

Replies: 0
Views: 473
Last post February 04, 2016, 11:37:43 AM
by legendguru
Google Roll out Science Journal Android App for Science Experiments

Started by legendguru

Replies: 0
Views: 201
Last post May 23, 2016, 12:45:33 AM
by legendguru
step by step guide on Installing Applications and Games On Android Devices

Started by ctytravellink

Replies: 0
Views: 327
Last post July 20, 2014, 02:40:37 AM
by ctytravellink
Google to rollout Android Apps and the Google Play Store on Chrome OS

Started by yungcrux

Replies: 0
Views: 132
Last post May 20, 2016, 09:35:28 AM
by yungcrux