SBI’s UPI enabled app, SBI Pay. (Photo by Srikanth Ramakrishnan)
SBI’s UPI enabled app, SBI Pay. (Photo by Srikanth Ramakrishnan) 
Insta

Android Malware Targets Over 200 Apps Including Banking Apps, Reports Quick Heal

BySwarajya Staff

An Android trojan has reportedly been targeting over 200 banking applications, reports Quick Heal Security Labs. The malware – named Android.banker.A9480 – is designed to steal personal data from users. Like other banking malware, it gathers login data, accesses SMS, contact lists and uploads them to a remote server. The trojan additionally also targets cryptocurrency apps.

Quick Heal lists apps operated by major banks including Axis Bank, Oriental Bank of Commerce, ICICI Bank, HDFC Bank, State Bank of India, IDBI Bank, Union Bank as potential victims.

Once on the phone, the app is able to track which banking apps are present on the phone and spoof them with a notification that prompts users to enter their credentials. The app additionally gets access to the SMS feature, allowing it to bypass the two-factor authentication (2FA).