Spain busts voice phishing ring for defrauding 10,000 bank customers

December 12, 2024 at 11:46AM Spanish and Peruvian police arrested 83 individuals involved in a major voice phishing scam, seizing cash and tech during 29 raids. The scammers impersonated banks, defrauding over 10,000 victims of €3 million by using spoofed calls to extract sensitive information. Authorities advise against sharing personal bank details without verification. ### … Read more

Trojan-as-a-Service Hits Euro Banks, Crypto Exchanges

December 5, 2024 at 04:08PM The Android RAT “DroidBot” features keylogging and data monitoring, targeting banks and organizations. Active since mid-2024, it’s linked to 17 affiliate groups and 77 attacks in Europe, with plans to expand into Latin America. Researchers warn its evolution into malware-as-a-service poses greater cybersecurity threats. ### Meeting Notes Takeaways: 1. **Emergence … Read more

New DroidBot Android banking malware spreads across Europe

December 4, 2024 at 01:33PM A new Android banking malware, ‘DroidBot,’ targets over 77 cryptocurrency and banking apps in Europe. Active since June 2024, it operates as a malware-as-a-service platform, facilitating attacks for affiliates. Key features include keylogging and SMS interception. Users are urged to download apps from Google Play and review permissions carefully. ### … Read more

Android Banking Trojan ToxicPanda Targets Europe

November 7, 2024 at 04:47AM ToxicPanda, an Android banking trojan with connections to China, is currently targeting more than a dozen banks across Europe and Latin America. ### Meeting Notes Takeaways – **Subject**: ToxicPanda Android Banking Trojan – **Origin**: Linked to China – **Targeted Regions**: – Europe – Latin America – **Impact**: Affects over a … Read more

NFC Traffic Stealer Targets Android Users & Their Banking Info

August 22, 2024 at 05:08PM A new Android malware called NGate has emerged, capable of cloning contactless payment data from credit and debit cards and sending it to an attacker’s device for fraudulent transactions. Initially based on NFCgate, this malware leverages phishing and social engineering to steal banking information and execute fraudulent ATM transactions. Based … Read more

New NGate Android malware uses NFC chip to steal credit card data

August 22, 2024 at 01:05PM NGate, a new Android malware, steals money from payment cards through NFC data relay. It tricks victims into installing malicious PWAs and WebAPKs, stealing banking credentials. Once installed, it uses NFC to capture and relay card data to the attacker’s device. It can also obtain the card PIN, posing a … Read more

Chameleon Banking Trojan Makes a Comeback Cloaked as CRM App

August 7, 2024 at 01:43PM The Chameleon Android banking Trojan has resurfaced with new security-bypass features, posing as a CRM application to target employees in the hospitality sector and businesses in Canada and Europe. The malware’s advanced abilities to bypass Android 13+ restrictions and masquerade as security applications signify a growing risk to organizations and … Read more

New Android Trojan “BlankBot” Targets Turkish Users’ Financial Data

August 5, 2024 at 01:24AM Cybersecurity researchers have discovered BlankBot, a new Android banking trojan targeting Turkish users to steal financial information. The malware employs various malicious capabilities, including customer injections, keylogging, and screen recording, and communicates with a control server over WebSocket connection. It also bypasses security features introduced in Android 13. Google is … Read more

Singapore Banks Ditch One-Time Passwords

July 15, 2024 at 09:04PM Singapore is implementing an initiative to phase out one-time passwords (OTPs) for retail banking customers in three months. The new authentication process will use digital tokens instead of passwords, aiming to enhance protection against phishing attacks. The measure, supported by MAS and ABS, aims to prevent scams and safeguard customer … Read more

Banks in Singapore to phase out one-time passwords in 3 months

July 14, 2024 at 11:37AM The Monetary Authority of Singapore (MAS) has mandated major retail banks to phase out the use of one-time passwords (OTPs) within three months, in response to increasing phishing and scam threats. Instead, customers will use digital tokens on their mobile devices for enhanced security. Those who haven’t activated digital tokens … Read more