How malicious Android Apps are stealing User's Bank Data?

teky (54)in Project HOPE • 3 years ago

Yesterday, I have came across a report suggesting that a number of Android apps, with more than 300,000 downloads, are basically bank trojans that steal bank user data, including dual verification codes (2FA), passwords, and more.

These applications use nifty tactics to bypass Google Play restrictions against fraudulent applications and successfully infiltrate users' devices to steal their data.

The applications, stands as QR scanners, PDF scanners, and cryptocurrency wallets, according to the report. They belong to four different families of malware on Android.

Image source

Applications have used restrictions on the use of accessibility services for visually impaired users to prevent the automatic installation of applications without user consent.

According to reports, malware program operators are using operating systems to make their trojans invisible to malware testers and Google Play security agreements.

For example, most campaigns start with a legitimate application that does not contain any malware. However, when users download apps and start using them, they send messages to users, directing them to download “updates” from third-party sources.

These "updates" from third-party sources add malicious programs to user devices that help users of malicious software to steal sensitive user data from their Android devices.

One of the largest malware families on the market, according to the report, is Anatsa. It is an advanced Android banking trojan ”that can automatically transfer the entire amount from the affected user device to a malicious computer account, related. Other families of malware detected by researchers include Hydra, Alien, and Ermac.

Google did not respond to the report and directed UK Wired on posts related to how Google Play treats malicious applications in its area since the beginning of this year. While the methods Google uses to protect users from malicious programs are legal, Google Play Store has been home to many malicious apps and games over the past few years.

So, if you are an Android user, Please make sure you find your apps and games for trusted developers in the Google Play Store. Also, I recommend that you avoid downloading apps and games from anonymous third-party sources in order to keep your device free of malicious applications.