Banking

Check your Android phone now or risk bank accounts being raided – UK placed on red alert


Android phone users, including those in the UK, are being warned about a new threat that’s targeting bank accounts.

Anyone who has an Android phone in their pocket should be on high alert when downloading any new apps – even if they are available on Google’s official Play Store. Security experts from Zscaler ThreatLabz say they have recently discovered over 90 applications that contain nasty malware including the extremely worrying Anstsa bug.

Once installed, this virus can start gaining access to sensitive banking credentials and financial information. It does this by using clever overlay and accessibility techniques which allows hackers to intercept and collect data discreetly. That means the user will be completely unaware anything is wrong until money starts going missing.




According to Zscaler ThreatLabz, the current crop of dangerous apps have been downloaded over 5 million times with Anatsa actively targeting banking applications in the US and UK.

What makes this type of attack so hard to spot is that it uses a so-called “dropper technique” to infect phones. On first impressions, the downloaded app looks completely clean with the criminals then adding the malware at a later date via an update.

“At Zscaler ThreatLabz, we regularly monitor the Google Play store for malicious applications,” the team explained.

“Over the past few months, we identified and analyzed more than 90 malicious applications uploaded to the Google Play store. These malware-infected applications have collectively garnered over 5.5 million installs.

“This sophisticated malware employs dropper applications that appear benign to users, deceiving them into unwittingly installing the malicious payload. Once installed, Anatsa exfiltrates sensitive banking credentials and financial information.”

The most recent apps found to be infecting Android phones include PDF and QR readers. Both managed to infect over 70,000 devices before being removed by Google.



Source link

Leave a Response