200,000 Potential Victims Identified As Malware Disguised As Legitimate Apps Crack Bank Accounts, Warns CIFAS
A prominent fraud prevention service says international crime groups are spreading malware designed to steal victims’ banking information.
The London-based Credit Industry Fraud Avoidance System (CIFAS) says it is witnessing a surge in Android malware attacks targeting banking apps.
CIFAS says that while the malware targets Android users, other mobile platforms are not immune to attacks, noting that the malicious software may have hit 200,000 victims in just six months.
“These malicious apps often look like legitimate tools – such as file managers, PDF readers, phone cleaners, or even browsers like Google Chrome. Once installed, they can appear harmless but later activate harmful features through hidden updates.
Key techniques criminals use include:
Overlaying fake login screens on top of real banking apps to steal login credentials.
Displaying deceptive ‘busy’ or ‘waiting’ screens to mask fraudulent activity.
Preventing users from exiting the app or restarting their device.
Requesting excessive permissions, especially ‘accessibility’ access.”
According to CIFAS, users should be on the lookout for signs that their phones are infected with malware, including prompts to reauthenticate during a banking session, “busy” messages from banking apps, unexpected notifications to update or install Google Chrome and prompts to grant unusual permissions, particularly accessibility access.
Says CIFAS CEO Mike Haley,
“The surge in Android malware is not just a tech issue – it’s a growing threat to consumers and to banking services we all rely on. Criminals are evolving their tactics faster than ever, using deception and stealth to bypass traditional security measures.
The best defence is awareness. If something feels off – an unexpected update, a strange app request – stop before you tap and always seek a second opinion. Education and vigilance are our frontline tools in the fight against fraud.”
Disclaimer: The content of this article solely reflects the author's opinion and does not represent the platform in any capacity. This article is not intended to serve as a reference for making investment decisions.
You may also like
LRC -161.64% 7-Day Drop Amid Market Volatility
- LRC faces intensified regulatory scrutiny with investigations into compliance protocols across key markets. - Strategic shifts include terminating third-party partnerships and prioritizing decentralized infrastructure and open-source development. - Governance upgrades introduce multi-sig models and expanded voting rights to address community concerns over volatility. - Technical upgrades boost network throughput by 20%, aiming to enhance scalability and energy efficiency for long-term competitiveness. -
Ethereum News Today: Linea's Airdrop Hype Drives Surge in Stablecoin Supply and DEX Activity
- Linea's stablecoin supply hit $74.5M, driven by USDC inflows ahead of its token airdrop. - DEX volumes spiked to $100M temporarily, with Linea now ranking 34th in blockchain stablecoin supply. - Consensys plans mUSD stablecoin integration with Ethereum and Linea, alongside a 72B LINEA tokenomics framework. - Airdrop analysts highlight Linea's potential, citing 9% early user allocation and $450M in Series D funding.
BlackRock ignites Ethereum rally: $455 million inflows drive Ethereum ETF surge
The world's largest asset management firm, BlackRock, has recently led capital inflows into Ethereum ETFs, injecting $455 million in a single day and pushing the total inflow past $13 billion. Its iShares Ethereum Trust (ETHA) now manages $16.5 billion and holds 3.775 million ETH. Driven by institutional capital, the price of ETH rose 4.5% in a single day, surpassing $4,600. The inflow rate into Ethereum ETFs has now exceeded that of bitcoin ETFs, reflecting strong market demand for Ethereum. Summary generated by Mars AI. This summary was generated by the Mars AI model, and the accuracy and completeness of its content are still being iteratively improved.
South Korea Cracks Down as Crypto Scams Hijack Celebrities' Fame
- South Korean police arrested three in a $4.1M crypto scam, part of global crackdowns on digital asset fraud. - Celebrities' hacked accounts promoted fake tokens like "CR7" and "YZY," causing rapid market collapses and investor losses. - International cases include a $50M gold-laundering arrest in Thailand and a 5-year fugitive caught in Seoul over $13.2M fraud. - Chainalysis reports $2.2B stolen from crypto platforms in 2024, urging stronger regulation and investor education to combat rising scams.
Trending news
MoreCrypto prices
More
