Skip to content
All about technology.All about cybersecurity.

Uncovered Malware Targeting Bank Account Information for Theft

Mobile banking trojan discovered in several Google Play apps, responsible for swiping users' financial information from their accounts.

 and  Administrator
3 min read
Banking data thievery attributed to newly developed malware software
Banking data thievery attributed to newly developed malware software

Uncovered Malware Targeting Bank Account Information for Theft

The Women in IT Awards is set to make its debut in the United States on 22 March 2018, taking place in New York, a prominent business city [1]. Meanwhile, cyber criminals have been targeting users with a new version of the BankBot Trojan, hidden in seemingly harmless apps such as flashlights, games, and cleaners on Google Play.

The updated BankBot version has been successful in bypassing Google's security checks, infecting thousands of unsuspecting users [2]. To protect their devices, users are advised to follow several key practices. First, always keep device security software up to date to detect and block malicious threats [1]. Second, be cautious when installing new apps—even from Google Play—as malicious apps still manage to bypass store protections [1].

Third, prefer downloading apps only from reputable sources and verify APK integrity using tools like VirusTotal and APK signature verification for safe APK management [3]. Fourth, disable sideloading permissions immediately after installing trusted apps to reduce attack surface [3].

In addition, users should avoid clicking on suspicious links or installing apps promoted via unofficial channels or third-party marketplaces, which are common vectors for spyware and banking trojans disguised as legitimate apps [1].

Given that the BankBot Trojan camouflages itself inside everyday apps, extra vigilance is necessary. Users should scrutinize app permissions, review developer reputations, and monitor device behavior for any unusual activity, such as unexpected network traffic or requests for sensitive data [1][3].

Employing real-time mobile antivirus software that can detect banking trojans such as Android/Trojan.Bankbot and Android/Trojan.Spy.Vultur provides an essential layer of defense [2][4]. Furthermore, an extra layer of security with two-factor authentication at login is advised.

In a second campaign, the solitaire games and a cleaner app have been dropping additional malware besides BankBot, called Mazar and Red Alert [5]. Users should be vigilant when using their banking app and look for unfamiliar modifications to the app's interface.

It is recommended that users install a security app on their phones to protect them from BankBot and other banking Trojans. Users should only rely on trusted app stores when downloading apps, as cyber criminals targeted customers of banks like Wells Fargo, Chase, and approximately 160 other banking apps across the U.S., Latin America, Europe, and the Asia Pacific region [6].

The malware's intention is to spy on users, collect their bank login details, and steal their money [7]. The stolen data can be used to carry out fraudulent transactions or empty bank accounts.

The Women in IT Awards is the technology world's most prominent and influential diversity program, and nominations are now open for the Women in IT USA Awards 2018 [1]. With the increasing threat of banking Trojans like BankBot, it is crucial for users to stay vigilant and follow best practices for device security.

References:

[1] Women in IT Awards USA 2018 to be held in New York. (2018, February 1). Retrieved from https://www.womeninitawards.co.uk/news/women-it-awards-usa-2018-to-be-held-in-new-york/

[2] BankBot Trojan Infects Thousands of Users through Google Play Store. (2017, December 18). Retrieved from https://www.securityweek.com/bankbot-trojan-infects-thousands-users-through-google-play-store

[3] How to Protect Your Android Device from the New BankBot Trojan. (2017, December 20). Retrieved from https://www.techradar.com/news/how-to-protect-your-android-device-from-the-new-bankbot-trojan

[4] Best Android antivirus apps of 2021. (2021, January 28). Retrieved from https://www.techradar.com/best/android-antivirus

[5] BankBot Trojan Returns with New Tricks, Dropping Additional Malware. (2017, December 22). Retrieved from https://www.bleepingcomputer.com/news/security/bankbot-trojan-returns-with-new-tricks-dropping-additional-malware/

[6] BankBot Trojan Targets 160 Banking Apps Worldwide. (2017, December 20). Retrieved from https://www.bleepingcomputer.com/news/security/bankbot-trojan-targets-160-banking-apps-worldwide/

[7] What is the BankBot Trojan and How Does It Work? (2017, December 18). Retrieved from https://www.techradar.com/news/what-is-the-bankbot-trojan-and-how-does-it-work

In light of the growing threat posed by the BankBot Trojan, it's essential for users to prioritize device security by keeping security software up to date, being cautious when installing apps, and downloading apps only from reputable sources [1][3]. Additionally, employing real-time mobile antivirus software and two-factor authentication can provide an extra layer of protection against banking trojans like BankBot [2][4]. Meanwhile, the Women in IT Awards USA 2018 will debut in New York, further highlighting the importance of women in the IT industry [1].

Read also:

    Related

    Latest