Beware! This Android Trojan is targeting Indian banks’ mobile apps | HT Tech

Beware! This Android Trojan is targeting Indian banks’ mobile apps

The Trojan is targeting applications from top Indian banks such as SBI, HDFC, ICICI, IDBI and Axis, among others.

By: INDO ASIAN NEWS SERVICE
| Updated on: Jan 09 2018, 12:40 IST
Android banking Trojan may target Indian banks’ mobile apps: Quick Heal
Android banking Trojan may target Indian banks’ mobile apps: Quick Heal (Getty Images/iStockphoto)

Global IT security firm Quick Heal's Security Labs on Thursday said it has discovered an Android Banking Trojan that imitates more than 232 mobile apps, including those offered by Indian banks like SBI, HDFC, ICICI, IDBI and Axis, among others.

According to the researchers, the malware known as "Android.banker.A2f8a" is being distributed through a fake Flash Player app on third-party stores.

You may be interested in

MobilesTablets Laptops
28% OFF
Samsung Galaxy S23 Ultra 5G
  • Green
  • 12 GB RAM
  • 256 GB Storage
Google Pixel 8 Pro
  • Obsidian
  • 12 GB RAM
  • 128 GB Storage
Vivo X100 Pro 5G
  • Asteroid Black
  • 16 GB RAM
  • 512 GB Storage
Apple iPhone 15 Plus
  • Black
  • 6 GB RAM
  • 128 GB Storage

After downloading the app, it keeps checking for the installed apps on the victim's device and particularly looks for the 232 banking and cryptocurrency apps.

Also read
Looking for a smartphone? To check mobile finder click here.

Once any of the targeted apps is found on the device, the app shows fake notifications disguised as coming from the targeted app and asks users to log in with their credentials and ultimately tricks them by stealing their login ID and password.

"Users are advised to avoid downloading apps from third party app stores or links provided in SMSs and emails to keep their credentials safe," Sanjay Katkar, Joint Managing Director and Chief Technology Officer, Quick Heal Technologies Limited, said in a statement.

"It is also strongly advised to keep device OS and mobile security app up-to-date," he added.

In the background, the app carries out malicious tasks -- it keeps checking the installed app on the victim's device and particularly looks for 232 apps (banking and some cryptocurrency apps).

If any one of the targeted apps is found on the infected device, the app shows a fake notification on behalf of the targeted banking app. If the user clicks on the notification, they are shown a fake login screen which enables stealing the user's confidential info like net banking login ID and password.

"Install a reliable mobile security app that can detect and block fake and malicious apps before they can infect your device," Quick Heal said.

Catch all the Latest Tech News, Mobile News, Laptop News, Gaming news, Wearables News , How To News, also keep up with us on Whatsapp channel,Twitter, Facebook, Google News, and Instagram. For our latest videos, subscribe to our YouTube channel.

First Published Date: 05 Jan, 12:15 IST
NEXT ARTICLE BEGINS