JAKARTA - In recent months, cyberattacks have continued to arrive and target anyone vulnerable to their banking online security system. Now, the latest version of the Android Banker spyware has been discovered by Microsoft researchers.
Researchers say unknown hackers started a Smishing (SMS Phishing) campaign that tried to trick victims into downloading TorjanSpy: AndroidOS/Banker O.
This spyware is a variant capable of extracting all types of sensitive information, including two-factor authentication code (2FA), account login details and other personal identification information (PII).
Furthermore, what makes this spyware even more dangerous is having the ability to work secretly without the device or the user being detected.
After the user downloads it, they can intercept calls, call log access, message, contact and network information.
In fact, this spyware can receive and read two-factor authentication code from SMS, and can delete it to make sure users don't suspect it.
In addition, there is also the silent mode of the cryptocurrency bank which makes its activity undetected by the device system, including voiceless notifications, vibrations, screen lights and more.
Citing TechRadar, Monday, September 26, this spyware bank initially only operated in India since it was detected in 2021. But now the spyware continues to develop and is likely to spread across various other countries.
"Some dangerous APKs also use the same Indian bank logo as fake applications that we are investigating, which can show that the perpetrators are continuing to create new versions to keep the campaign running," the researchers explained.
The English, Chinese, Japanese, Arabic, and French versions are automatically generated by the AI. So there may still be inaccuracies in translating, please always see Indonesian as our main language. (system supported by DigitalSiber.id)
