One sunny morning, my breakfast was interrupted by a phone call from a friend who is an entrepreneur engaged in the transportation of various goods. He said that $11,000 disappeared from his bank account during the night. The bank support service could not help. They advised my friend to report this incident to the police. The money transfers were made using the mobile application and confirmed via SMS. Everything looked like completely legal financial transactions.“You work in security,” my friend moaned into the receiver, “please advise what to do.” Unfortunately, it was already too late to do something. Cybercriminals used a banking trojan as a tool to steal money. Rogue software penetrated my friend’s phone long before the incident. You may prevent the loss of money only by studying the principles of work and the methods of dealing with this type of malicious application.History of Banking TrojansMalware capable of re-sending incoming SMS messages to attackers, including those containing TAN codes (transaction authentication number), have been circulating for about 15 years. In addition, trojans that knew how to use USSD commands also existed at that time. They could transfer the money from the bank card attached to the phone. But, of course, they were not full-fledged banking trojans since they were noticeably inferior in functionality to their desktop counterparts.The first full-fledged banking trojans for the Android mobile platform were discovered about ten years ago. The first one was the Android SpyEye banking trojan. This trojan worked in conjunction with the SpyEye malware for Windows. This duo nature allowed attackers to bypass two-factor authentication.Here is how SpyEye worked. As soon as the user of the infected Windows system opened a banking si ..
Support the originator by clicking the read the rest link below.
