shot-button
E-paper E-paper
Home > Lifestyle News > Health And Fitness News > Article > Beware New Android malware Faketoken steals users data from cab hailing apps

Beware! New Android malware 'Faketoken' steals users' data from cab-hailing apps

Updated on: 18 August,2017 06:57 PM IST  |  Moscow
IANS |

A new modification of notorious mobile banking Trojan "Faketoken" has resurfaced which is able to steal credentials from popular taxi applications and ride-sharing apps

Beware! New Android malware 'Faketoken' steals users' data from cab-hailing apps

New Android malware steals users


 


A new modification of notorious mobile banking Trojan "Faketoken" has resurfaced which is able to steal credentials from popular taxi applications and ride-sharing apps, Moscow-based cybersecurity firm Kaspersky Lab said on Friday.


"The new version of 'Faketoken' performs live tracking of apps and, when the user runs a specified app, overlays this with its phishing window to steal the bank card details of the victim," Kaspersky Lab said in a statement.

The trojan virus has an identical interface, with the same colour schemes and logos, which creates an instant and completely invisible overlay.

"The fact that cybercriminals have expanded their activities from financial applications to other areas, including taxi and ride-sharing services, means that the developers of these services may want to start paying more attention to the protection of their users," said Viktor Chebyshev, security expert at Kaspersky Lab.

"The banking industry is already familiar with fraud schemes and tricks, and its previous response involved the implementation of security technologies in apps that significantly reduced the risk of theft of critical financial data," Chebyshev added.

According to Kaspersky Lab, the new version of "Faketoken" targets mostly Russian users but they believe the geography of attacks could easily be extended in the future.

The "Faketoken" modification steals all incoming SMS messages by redirecting them to its command and control servers, allowing criminals to get access to one-time verification passwords sent by a bank, or other messages sent by taxi and ride-sharing services.

Among other things, the malware also monitor users' calls, records them and transmits the data to the command and control servers.

Kaspersky researchers have also detected 'Faketoken' attacks on other popular mobile applications, such as travel and hotel booking apps, apps for traffic fine payments, Android Pay and the Google Play Market.

"Exciting news! Mid-day is now on WhatsApp Channels Subscribe today by clicking the link and stay updated with the latest news!" Click here!


Mid-Day Web Stories

Mid-Day Web Stories

This website uses cookie or similar technologies, to enhance your browsing experience and provide personalised recommendations. By continuing to use our website, you agree to our Privacy Policy and Cookie Policy. OK