SBI, ICICI, HDFC, Punjab National Bank, Kotak Mahindra, IDBI, Standard Chartered Bank etc. are in the list of targeted banks.
Drinik malware has been impersonating the Indian Income Tax department and was recording victim’s screen for stealing the login credentials.
This malware was first spotted in 2016 as a SMS stealer and updated itself in 2021 after which it started targeting financial institutions by leading them to malicious phishing pages.
Keylogging, abusing accessibility, recording screen, stealing credentials are some of the malicious functionalities which are performed by this malware.
Drinik targets the accessibility service for stealing the credentials from users. This stolen credentials can lead to unauthorized transactions and theft.
Install NPAV on your device to defend them against all kinds of malware and ransomware attacks. Use NPAV and join us on a mission to secure the cyber world.