• Menu
  • Skip to main content
  • Skip to primary sidebar

The Cyber Security News

Latest Cyber Security News

Header Right

  • Latest News
  • Vulnerabilities
  • Cloud Services
new android malware targeting brazil's itaú unibanco bank customers

New Android Malware Targeting Brazil’s Itaú Unibanco Bank Customers

You are here: Home / General Cyber Security News / New Android Malware Targeting Brazil’s Itaú Unibanco Bank Customers
December 27, 2021

Scientists have learned a new Android banking malware that targets Brazil’s Itaú Unibanco with the enable of lookalike Google Enjoy Retailer internet pages to have out fraudulent economical transactions on victim devices without having their knowledge.

“This software has a related icon and identify that could trick customers into contemplating it is a legit app connected to Itaú Unibanco,” Cyble scientists explained in a report printed previous 7 days. “The [threat actor] has created a bogus Google Participate in Keep web site and hosted the malware that targets Itaú Unibanco on it beneath the name ‘sincronizador.apk.'”

Automatic GitHub Backups

✔ Approved From Our Partners
AOMEI Backupper Lifetime

Protect and backup your data using AOMEI Backupper. AOMEI Backupper takes secure and encrypted backups from your Windows, hard drives or partitions. With AOMEI Backupper you will never be worried about loosing your data anymore.

Get AOMEI Backupper with 72% discount from an authorized distrinutor of AOMEI: SerialCart® (Limited Offer).

➤ Activate Your Coupon Code


The tactic of leveraging faux application store web pages as a lure is not new. In March, Meta (beforehand Fb) disclosed particulars of an attack campaign that used its platform as component of a broader operation to spy on Uyghur Muslims utilizing rogue 3rd-party sites that made use of replica domains for common information portals and websites built to resemble 3rd-party Android app outlets, where attackers place phony keyboard, prayer, and dictionary applications that may well enchantment to the targets.

Android Malware

In the most current occasion noticed by Cyble, the phony URL not only impersonates the formal Android application marketplace, but also hosts the malware-laced Itaú Unibanco software, in addition to saying that the application has had 1,895,897 downloads.

End users who put in and launch the imposter app from the meant Google Play Store website page are subsequently prompted to help accessibility providers as properly as other intrusive permissions that make it possible for the malware to access notifications, retrieve window material, and execute faucet and swipe gestures.

Prevent Data Breaches

The goal of the trojan, for every the scientists, is to execute fraudulent economic transactions on the legitimate Itaú Unibanco application by tampering with the user’s input fields, joining a extensive checklist of banking malware that abuse the accessibility API. Google, for its component, has started imposing new limitations to restrict the use of such permissions that allow for apps to capture sensitive information and facts from Android devices.

This is significantly from the initially time the Sao Paulo-based money products and services enterprise has arrive less than the radar of fiscally-determined risk teams. Previously this April, ESET discovered a new banking trojan dubbed Janeleiro that was noticed placing company users in Brazil at minimum because 2019 throughout a variety of sectors these types of as engineering, health care, retail, manufacturing, finance, transportation, and govt.

“Menace Actors consistently adapt their methods to stay away from detection and locate new strategies to goal users through increasingly complex methods. Such malicious apps usually masquerade as legitimate purposes to trick buyers into setting up them,” the researchers reported.

“People ought to install purposes only right after verifying their authenticity and install them completely from the formal Google Engage in Retail store and other dependable portals to stay away from these types of attacks.”

Identified this short article fascinating? Follow THN on Fb, Twitter  and LinkedIn to read more unique articles we put up.


Some areas of this posting are sourced from:
thehackernews.com

Previous Post: «new android malware targeting brazil's itaú unibanco bank customers New Android Malware Targeting Brazil’s Itaú Unibanco Bank Customers
Next Post: ‘Spider-Man: No Way Home’ Pirated Downloads Contain Crypto-Mining Malware 'spider man: no way home' pirated downloads contain crypto mining malware»

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Report This Article

Recent Posts

  • Ransomware Attacks Increasing at “Alarming” Rate
  • Senate Report: US Government Lacks Comprehensive Data on Ransomware
  • Popular PyPI Package ‘ctx’ and PHP Library ‘phpass’ Hijacked to Steal AWS Keys
  • Fronton IOT Botnet Packs Disinformation Punch
  • SIM-based Authentication Aims to Transform Device Binding Security to End Phishing
  • New Chaos Ransomware Builder Variant “Yashma” Discovered in the Wild
  • Open source packages with millions of installs hacked to harvest AWS credentials
  • DOE ‌‌‌‌‌‌‌‌‌‌‌‌‌‌‌funds‌ ‌development of Qunnect’s Quantum Repeater
  • Cabinet Office Reports 800 Missing Electronic Devices in Three Years
  • Malware Analysis: Trickbot

Copyright © TheCyberSecurity.News, All Rights Reserved.