New Android Malware Targets 12 Indian Banking Apps and Stealing Login Information: Quick Heal

Quick Heal Security Labs recently detected an Android Trojan Banking which explicitly targets banking apps. As per the report, this new Android malware targets 232 banking apps across the world, and the list includes 12 Indian banking apps from top-tier banks. The malware is known as Android.banker.A2f8a (Previously detected as Android.banker.A9480) as per Quick Heal.

android1

“Like most other Android banking malware, even this one is designed for stealing login credentials, hijacking SMSs, uploading contact lists and SMSs on a malicious server, displaying an overlay screen (to capture details) on top of legitimate apps and carrying out other such malicious activities,” said Quick Heal in the report.

The malware Android.banker.A2f8a is being distributed through a fake Flash Player app on third-party stores. Once if the user installs the malicious app, it will keep on asking the user to activate admin rights. “And even if the user denies the request or kills the process, the app will keep throwing continuous pop-ups until the user activates the admin privilege. Once this is done, the malicious app hides its icon soon after the user taps on it,” the report added.

Once if the user grants admin rights to the application, the application carries out malicious tasks in the background. If it founds out any of the banking application out of the 232 apps installed on the smartphone, it will throw a fake login page by which it steals the login information.

Furthermore, the malicious application has the ability to intercept all incoming and outgoing SMSs from the infected device with which the attackers bypass the two-factor verification. And it also has the ability to transfer all the SMSs for your inbox to the service.

android-malware-banking
Image: Quick Heal

That’s not all; it has a few more functionalities. The malware can also set the device’s ringer volume to silent in order to suppress SMS notifications. Here’s the list of targeted banks in India:

  • Axis Mobile
  • HDFC Bank MobileBanking
  • SBI Anywhere Personal
  • HDFC Bank MobileBanking LITE
  • iMobile by ICICI Bank
  • IDBI Bank GO Mobile+
  • Abhay by IDBI Bank Ltd
  • IDBI Bank GO Mobile
  • IDBI Bank mPassbook
  • Baroda mPassbook
  • Union Bank Mobile Banking
  • Union Bank Commercial Clients

To stay away from this malicious attack, you should not install any flash player application, especially the ones with Adobe name. The flash player size is reportedly said to be 115KB. Also, Quick Heal noted that their security application detects this malware and alerts the user if any.

Read more on:

Chakri is a go-to guy for your next smartphone recommendation. Back in his engineering days, he used to play with smartphones by installing custom ROMs and that passion got him into the tech industry. He still goes nuts about a smartphone knocking his door for review. Currently managing everything at Telecom Talk, Chakri is trying to master PUBG Mobile in his free time.

9
Leave a Reply

avatar
Photo and Image Files
 
 
 
5 Comment threads
4 Thread replies
0 Followers
 
Most reacted comment
Hottest comment thread
7 Comment authors
Sunny | LucknowRuchit Shahtri_visGirish GowdaKiran Fernandes | Mumbai Recent comment authors
newest oldest most voted
Ruchit Shah
Ruchit Shah

Your phone is only affected if you are installing flash player from outside. Just dont install anything other than playstore and we are safe. Banks are not to be blamed its the users who are installing apps from third parties knowing that it is not safe. Same goes for Apple and iphone..

Girish Gowda
Girish Gowda

This is massive and no one seems concerned.

Recent Posts

Indian Telecom Industry Slated to Report a Decline in Revenue for Third Consecutive Year: ICRA

The Reliance Jio-induced pains for the telecom sector will continue with the industry slated to report a decline in revenue...

Redmi Note 7 Pro Users in India Get New MIUI 10 Global Stable Update That Optimises System Stability

Xiaomi launched the Redmi Note 7 and Redmi Note 7 Pro smartphones in India last month. It is not even...

Vodafone Super VoLTE: Availability, Compatible Handsets and Everything You Need to Know

Bharti Airtel followed on the footsteps of Vodafone as it introduced the VoLTE for roaming a few days back. The...