The Indian Computer Emergency Response Team (CERT-In) has issued a warning about a banking trojan called EventBot.
Research states that the malware is widely infecting various android devices around the globe. The main risk factors introduced by the malware is info-stealing and reading/intercepting user SMS which helps it to bypass two factor authentication.
Eventbot was found to infect more than 200 financial android applications. EventBot is targeting financial applications like Paypal Business, Revolut, Barclays, UniCredit, CapitalOne UK, HSBC UK, TransferWise, Coinbase, and paysafecard.
There are various information and permission that is required by the malware. If the user falls for the trap and grants the permissions required, the malware becomes really lethal. After gaining certain permissions from the user it can control various device services and can even control the battery, lockscreen, and processing performance of the device.
The malware has not yet been reported on Google’s play store but it already infects more than 200 applications which is alarming. NPAV recommends users to use applications from trusted saources and stores. Always check the application before granting any permission to it.
Use NPAV and join us on a mission to secure the cyber world.