Search This Blog

Powered by Blogger.

Blog Archive

Labels

Showing posts with label Trojan infection. Show all posts

Android Malware intercepts bank calls and redirects to scammers

There is a new version of the creative FakeBank Android malware that intercepts victims’ calls to their banks and redirects them to scammers.

The trojan is one of the most creative android malware threatening the market. FakeBank operates by fooling customers using fake login screens inserted on top of legitimate banking apps.

The innovative new version not only lets scammers intercept banking calls made by customers by switching the dialed number with a special one pre-configured in the configuration file, but also enables them to actually make calls to customers using a special number, which will come up on users’ screen as if their bank is calling them.

This lets these scammers fool customers into giving away their banking information whenever they want it.

This new variant is allegedly only active in South Korea at the moment, according to a report by Symantec researchers, who have discovered the trojan in 22 apps so far via social media links and third-party app stores, targeting Korean bank clients.

In the past, the trojan has been able to whitelist its process to remain active while the users’ phone was in sleep mode and has also used TeamViewer to grant attackers full access to the device.

"Baby please check my facebook profile" Spam mail leads to Trojan infection


A new spam campaign with the subject "I miss you , Check my new video please" targeting social media users, Report from HotForSecurity says.

"Hi baby please check my facebook profile, i send you friend request please add me from friends.  I miss you , check my video please [LINK]" The spam mail reads.

When a user click the bogus facebook link provided in the mail, he will be redirected to a malicious page where a java code is automatically downloaded and installs Trojan.

According to BitDefender researchers, the malicious application has been written in java script language that can compromise user's personal information.