Danger for Android users: malware app steals data and makes transfers
Researchers are currently warning of a new version of Android malware. This not only steals bank data, but can now also make automated transfers.
For about a year now, security researchers have been warning of the Android malware Xenomorph, which is targeting smartphone users’ bank details. After things had recently calmed down a bit about the malware, ThreatFabric has now tracked down a new version of the banking Trojan. (via: BleepingComputer).
According to the report, this is now more dangerous than ever. So far, attackers have been able to steal data and account balances from infected devices. What is new now is that automated transfers are made. According to the researchers, this makes the malware one of the “most advanced and dangerous banking Trojans”.
Banking Trojans even bypass multi-factor authentication
The latest version of Xenomorph is designed to automate the entire chain from malware installation to money transfer. Cyber criminals don’t even have to take action themselves to empty their victims’ accounts. Even multi-factor authentication can be circumvented in this way.
The malware is now targeting significantly more banks. According to the report, ING, Deutsche Bank and Citibank are among the approximately 400 banking institutions worldwide. In the Google Play Store, Xenomorph is currently distributed via a currency converter. Once installed, the malware hides behind the “Play Protect” icon.
The original to this article “Malware app steals data and makes transfers” comes from chip.de.
CHIP