[ad_1]
A team from security company Cybereason Nocturnus said they had found a new malware that appeared around March of this year aimed at attacking Android devices. The targets are more than 200 financial apps, including cryptocurrency wallets, banking services, and money transfer services.
EventBot, as it is called malware, has as its main applications applications such as Paypal Business, UniCredit, HSBC UK, Santander UK, TransferWise, Coinbase and paysafecard among others.
According to communication By Cybereason, published on Thursday, April 30, the banking Trojan abuses Android accessibility features to steal user data from financial applications. EventBot works by reading and stealing SMS messages to allow malware to bypass two-factor authentication.
“The EventBot is particularly interesting because it is in its early stages. This new malware has real potential to become the next big mobile malware, as it is under constant interactive enhancements, abuses a critical feature of the operating system, and targets financial applications, ”said Cybereason.
Although EventBot is not currently available on the Google Play Store, the company was able to find various icons that EventBot is using to disguise itself as a legitimate app. “We believe that when it is officially released, it will likely be sent to rogue APK stores and other obscure websites, disguised as real apps.”
The security company recommends that users keep their mobile devices updated, keep Google Play Protect enabled, and don’t download apps from unofficial or unauthorized sources. Cybereason also indicates that users use mobile threat detection solutions to increase security.
Also read: Blockchain.com and Binance.com are among the most counterfeit sites in the world
Also read: Microsoft browser fights cryptocurrency mining malware
Also read: Blockchain is one of the emerging technologies most demanded by companies, according to a study
