Friend
Professional
- Messages
- 2,653
- Reaction score
- 850
- Points
- 113
Attackers combine viruses and social engineering in attacks on smartphones.
Cybercriminals are actively using combined attacks that combine malicious software and social engineering techniques. According to SafeTech CEO Denis Kalemberg, attackers use Trojan viruses in combination with phone calls from fake employees of the banking security service.
The attack scheme begins with a virus infecting a smartphone. The user receives an email with a phishing link disguised as a legitimate message. When you click on the link to a device with the Android operating system, a trojan is installed.
After activating the malware, the smartphone begins to behave strangely: screens are scrolled, various applications are opened, push messages are received about debiting funds from bank accounts. Then the victim receives a call from an alleged representative of the bank's security service, informing about the hack and offering to urgently transfer money to a "safe account".
Kalemberg explained that attackers do gain partial access to the device. Fake notifications visually resemble bank messages, but they are an imitation. Being in a state of panic, the user does not notice the substitution and unconditionally believes the caller "bank employee" and acts strictly at the behest of the attackers.
Further actions of fraudsters may vary: either luring out login details to an online bank, or asking them to transfer funds to a "safe account" on their own. To remove the virus, it is usually enough to reset the phone to factory settings.
Such cases of fraud using Trojans imitating push notifications were reported by volunteers of the Association for the Development of Financial Literacy (ARFG) and representatives of Post Bank. The scheme works regardless of the amount on the account: fake push notifications come for small amounts, but people are afraid that "the system has been hacked" and fraudsters will withdraw everything that is on the account if they are not stopped. And they do report the code when a "security representative" calls them to, for example, "cancel operations," the ARFG explained.
All recorded cases concerned Android-based smartphones without an antivirus installed. It is assumed that the virus enters the device when downloading unlicensed software or visiting infected sites. Malicious applications are also distributed through phishing links in instant messengers, email, or SMS.
Representatives of OTP Bank note that deception schemes with the installation of third-party software on victims' devices remain relevant and are constantly being improved. Fraudsters are developing new tools to influence customers of financial institutions and their devices.
Kalemberg emphasizes that creating a Trojan to hack into an online bank and withdraw money is a difficult task. However, it is much easier to develop a virus that mimics push notifications, and such programs work effectively as a scare tool.
The Bank of Russia reminds of the constant improvement of fraudulent schemes and recommends that users take precautions. The regulator advises not to click on unknown links, not to install applications at the request of strangers, to use antivirus software and to update it regularly. In addition, it is important not to share personal and financial data with unauthorized persons, including codes from SMS and push notifications.
Source
Cybercriminals are actively using combined attacks that combine malicious software and social engineering techniques. According to SafeTech CEO Denis Kalemberg, attackers use Trojan viruses in combination with phone calls from fake employees of the banking security service.
The attack scheme begins with a virus infecting a smartphone. The user receives an email with a phishing link disguised as a legitimate message. When you click on the link to a device with the Android operating system, a trojan is installed.
After activating the malware, the smartphone begins to behave strangely: screens are scrolled, various applications are opened, push messages are received about debiting funds from bank accounts. Then the victim receives a call from an alleged representative of the bank's security service, informing about the hack and offering to urgently transfer money to a "safe account".
Kalemberg explained that attackers do gain partial access to the device. Fake notifications visually resemble bank messages, but they are an imitation. Being in a state of panic, the user does not notice the substitution and unconditionally believes the caller "bank employee" and acts strictly at the behest of the attackers.
Further actions of fraudsters may vary: either luring out login details to an online bank, or asking them to transfer funds to a "safe account" on their own. To remove the virus, it is usually enough to reset the phone to factory settings.
Such cases of fraud using Trojans imitating push notifications were reported by volunteers of the Association for the Development of Financial Literacy (ARFG) and representatives of Post Bank. The scheme works regardless of the amount on the account: fake push notifications come for small amounts, but people are afraid that "the system has been hacked" and fraudsters will withdraw everything that is on the account if they are not stopped. And they do report the code when a "security representative" calls them to, for example, "cancel operations," the ARFG explained.
All recorded cases concerned Android-based smartphones without an antivirus installed. It is assumed that the virus enters the device when downloading unlicensed software or visiting infected sites. Malicious applications are also distributed through phishing links in instant messengers, email, or SMS.
Representatives of OTP Bank note that deception schemes with the installation of third-party software on victims' devices remain relevant and are constantly being improved. Fraudsters are developing new tools to influence customers of financial institutions and their devices.
Kalemberg emphasizes that creating a Trojan to hack into an online bank and withdraw money is a difficult task. However, it is much easier to develop a virus that mimics push notifications, and such programs work effectively as a scare tool.
The Bank of Russia reminds of the constant improvement of fraudulent schemes and recommends that users take precautions. The regulator advises not to click on unknown links, not to install applications at the request of strangers, to use antivirus software and to update it regularly. In addition, it is important not to share personal and financial data with unauthorized persons, including codes from SMS and push notifications.
Source
