Internet safety theatre Quick Heal Security Labs says it has identified a novel Android malware that tin masquerade 232 banking apps including about Indian ones.
The malware, known equally Android.banker. A2f8a corrupts banking apps to procure somebody details including login ID, password, SMS which incorporate OTPs too contact lists. The contact lists too messages tin endure uploaded on a malicious server, display an overlay covert (to capture details) on top of legitimate apps too execute other such malicious activities, Quick Heal wrote inwards a weblog post.
The Android Banking Trojan was institute equally a purpose of a faux Flash Player app introduce on third-party stores. This faux app asks users for administrative rights merely later setup. Even if a user initially denies admin access, the app continues throwing pop-up windows until the user accepts. Once the app gets admin rights, it hides its icon too seeks fiscal apps to pocket data.
“Android.banker.A2f8a is beingness distributed through a faux Flash Player app on third-party stores,” Bajrang Mane, who leads the threat analysis, incident response, too automation teams inwards Quick Heal Security Labs, wrote inwards the post.
Mane said that Flash’s popularity makes it a mutual target for hackers.
If it accesses whatever of these apps from a user’s smartphone, it generates a faux notification sent on behalf of the banking app. Once the notification is accessed, the malware creates a faux login screen, which allows the trojan to pocket confidential information similar login ID too password for the banking app.
In India, Quick Heal identified the listing of banks whose apps which are beingness targeted past times Android.banker.A2f8a. This includes mobile banking apps of Axis Bank, HDFC Bank (regular too LITE versions), SBI Anywhere Personal, iMobile past times ICICI Bank, IDBI Bank (Abhay, Go Mobile too Go Mobile+), Union Bank Mobile Banking and Union Bank Commercial Clients. The listing also included mobile passbook apps such equally IDBI Bank mPassbook too Baroda mPassbook.
Not alone banking apps, but cryptocurrency apps, introduce on a user’s phone, withdraw maintain been affected besides past times this Trojan.
Users who withdraw maintain whatever of these apps on their phones are advised to install Avast gratis antivirus app to safeguard themselves from such malware.
