December 14, 2023 at 02:47PM
In 2023, ten new Android banking malware families emerged, targeting 985 bank and fintech/trading apps across 61 countries. Specific trends include automated transfer systems, social engineering, live screen-sharing, and offering the malware as a subscription. Notably, trojans are expanding beyond banking to target social media, messaging, and personal data. Staying safe entails avoiding third-party app downloads and being cautious with app permissions and external updates.
From the meeting notes, I have extracted the following key takeaways:
1. Emergence of Ten New Android Banking Malware Families: In 2023, ten new Android banking malware families have emerged, collectively targeting 985 bank and fintech/trading apps across 61 countries.
2. Features and Trends of Banking Trojans: The new malware families have introduced various trends, such as the addition of an automated transfer system, involvement of social engineering steps, live screen-sharing capability, and offering the malware in a subscription package to other cybercriminals. Standard features include keylogging, overlaying phishing pages, and stealing SMS messages.
3. Expansion of Targets: Banking trojans have expanded beyond stealing banking credentials and money to targeting social media, messaging, and personal data.
4. New Banking Trojans Analysis: Mobile security firm Zimperium has examined the characteristics of ten new banking trojans with over 2,100 variants, masquerading as different types of apps, and targeting various bank apps in multiple countries.
5. Notable Activity of Updated Malware Families: Certain malware families from 2022, including Teabot, Exobot, Mysterybot, Medusa, Cabossous, Anubis, and Coper, have maintained notable activity in 2023.
6. Most Targeted Countries: The United States, United Kingdom, Italy, Australia, Turkey, France, Spain, Portugal, Germany, and Canada are some of the most targeted countries by the banking trojans.
7. Security Recommendations: To protect against these threats, cautious behavior such as avoiding downloading APKs from sources outside Google Play, carefully reading user reviews, paying attention to app permissions, avoiding suspicious app update requests, and refraining from tapping on links in messages from unknown senders is advised.
These takeaways provide a comprehensive overview of the key points discussed during the meeting.