Express Computer
Home  »  eGov Watch  »  Beware of mobile banking malware EventBot, warns CERT-In

Beware of mobile banking malware EventBot, warns CERT-In

0 445

An Android mobile banking malware called “EventBot” which steals user data from financial applications is spreading, warns the Indian Computer Emergency Response Team (CERT-In). This mobile banking Trojan abuses Android’s in-built accessibility features to steal user data, read user SMS messages and intercept SMS messages, allowing malware to bypass two-factor authentication, the cybersecurity agency said in its advisory this month.

EventBot targets over 200 different financial applications, including banking applications, money-transfer services, and cryptocurrency wallets, or financial applications based in the US and Europe region at the moment but some of their services may affect Indian users as well.

The malware largely targets financial applications like Paypal Business, Revolut, Barclays, UniCredit, CapitalOne UK, HSBC UK, TransferWise, Coinbase, paysafecard etc., said CERT-In.

While EventBot has not been seen on Google Play Store yet, it uses several icons to masquerade as a legitimate application. EventBot is using third-party application downloading site to infiltrate into the victim device, the CERT-In warned.

“Once installed on victim’s Android device, it asks permissions such as controlling system alerts, reading external storage content, installing additional packages, accessing Internet, whitelisting it to ignore battery optimisation, prevent processor from sleeping or dimming the screen, auto-initiate upon reboot, receive and read SMS messages, and continue running and accessing data in the background,” the cybersecurity agency said in its advisory.

Further, the malware prompts the users to give access to their device accessibility services.

“Also, it can retrieve notifications about other installed applications and read contents of other applications. Over the time, it can also read Lock Screen and in-app PIN that can give attacker more privileged access over victim device,” the advisory said.

To help users prevent the malware infection into Android phones, the cyber-security agency recommended certain counter-measures.

“Do not download and install applications from untrusted sources (offered via unknown websites/ links on unscrupulous messages),” it said.

It also asked users to install updated anti-virus solution on Android devices.

Get real time updates directly on you device, subscribe now.

Leave A Reply

Your email address will not be published.

LIVE Webinar

Digitize your HR practice with extensions to success factors

Join us for a virtual meeting on how organizations can use these extensions to not just provide a better experience to its’ employees, but also to significantly improve the efficiency of the HR processes
REGISTER NOW 

Stay updated with News, Trending Stories & Conferences with Express Computer
Follow us on Linkedin
India's Leading e-Governance Summit is here!!! Attend and Know more.
Register Now!
close-image
Attend Webinar & Enhance Your Organisation's Digital Experience.
Register Now
close-image
Enable A Truly Seamless & Secure Workplace.
Register Now
close-image
Attend Inida's Largest BFSI Technology Conclave!
Register Now
close-image
Know how to protect your company in digital era.
Register Now
close-image
Protect Your Critical Assets From Well-Organized Hackers
Register Now
close-image
Find Solutions to Maintain Productivity
Register Now
close-image
Live Webinar : Improve customer experience with Voice Bots
Register Now
close-image
Live Event: Technology Day- Kerala, E- Governance Champions Awards
Register Now
close-image
Virtual Conference : Learn to Automate complex Business Processes
Register Now
close-image