Keep up with the news by installing RT’s extension for . Never miss a story with this clean and simple app that delivers the latest headlines to you.

 

​Massive 20-fold increase in Trojans targeting mobile banking – Kaspersky

Published time: February 27, 2014 10:43
Reuters / Kim Hong-Ji

Reuters / Kim Hong-Ji

Kaspersky Labs is reporting an incredible 20-fold explosion in the theft of financial details from mobile devices. Fully 98 percent of malware is breaching banking apps made for Google’s Android OS platform, the IT security company says.

“Cybercriminals have become obsessed by this method of illegal earnings,” the firm says in a report, specifying that while at the beginning of 2013 Kaspersky Labs had “portraits” of 67 banking Trojans, by the end of the year there were already 1,321 “unique samples.”

All in all, Kaspersky catalogued 143,211 “new modifications of malicious programs targeting mobile devices” such as smartphones and tablets in 2013, compared to 40,059 in 2012.

“Kaspersky Lab mobile products prevented 2,500 infections by banking Trojans,” the report said.

“In 2014, we expect to see vulnerabilities of all types being actively exploited to give malware root access on devices, making removal even more difficult,” Kaspersky said.

Unlike millions of computer viruses written for the love of the game and to boost self-esteem of young programmers, banking Trojans are created for purely financial reasons. With their help, cybercrooks are phishing credit card numbers, personal data, logins and passwords to online banking from smartphones processing banking transfers – to steal money from personal bank accounts.

Cybercrime is “becoming more focused on making profits more effectively,” the report said.

Hackers are choosing for their attacks primarily Google’s Android OS “confirming both the popularity of this mobile OS and the vulnerability of its architecture.”

Even the practice of authorizing every banking operation with a special code sent via sms cannot prevent criminals from stealing your money. Some viruses are created to operate simultaneously in a symbiotic mode on your computer and mobile device. When a virus tries to establish access to an online banking account it gets a unique security code sent by the bank to user’s phone – also infected with a copy of the same Trojan. This part of the virus simply forwards the code to its master on the computer – and the bank is fooled into thinking that the log-in attempt is genuine.

Another method used by virus writers is obfuscation, which means making the source code of the phishing Trojan deliberately complex and make its purpose unclear, help it evade anti-virus software and “colonizing” smartphones to siphon off money.

“Today, the majority of banking Trojan attacks target users in Russia and the CIS,” said Kaspersky Labs virus analyst Victor Chebyshev. “However, that is unlikely to last for long: given the cybercriminals’ keen interest in user bank accounts, the activity of mobile banking Trojans is expected to grow in other countries in 2014.”

Chebyshev added: “We already know of Perkel, an Android Trojan that attacks clients of several European banks, as well as the Korean malicious program Wroba.” He also specified the countries with the highest number of attacks. The top five are Russia (40 percent), India (8 percent), Ukraine (4 percent), Vietnam (4 percent) and the UK (3 percent).

The report warns against buying apps in alternative app stores, saying that malicious programs are very likely to be spread this way. Yet even legal web resources do not guarantee protection, as Kaspersky anti-virus products detected infection of 0.4 per cent of official websites.

In the light of the recent news about researchers in Britain showing that computer viruses can spread through Wi-Fi “as efficiently as the common cold spreads between humans,” the perspectives for 2014 do not look good.

“2013 saw the first registered malware attack on a PC launched from a mobile device. We forecast future Wi-Fi attacks from mobile devices on neighboring workstations and the wider infrastructure,” the report concluded.

Comments (5)

 

mergon 28.02.2014 09:12

My phone is not on the net ,the only pics are of my dogs
the only other stuff on it is my music , i only use my phone for calls ,it does not send my number ,its payg i never bank on line ,
I have another phone i use just for adverts thats all its used for its also payg and does not send its number !

If you think on line banking is safe you must be nuts !
Im related to 2 people that do international computer security and they dont bank on line !

 

Dot 27.02.2014 22:26

'Cybercriminals have become obsessed by this method of illegal earnings.'
No different than any other public parasite.

 

WL 27.02.2014 18:02

Actually, I find this very interesting at a time when TD bank was experiencing technical difficulty and the recent Target data breach.

Giv en that we now have confirmation from whistleblower Edwards Snowden that governments have targeted their own citizens for all encompassing spying for economic and political control, it makes you wonder....who is creating data breaches?

T o me, it looks like the only ones really capable is our own govenment b/c they already have the technology and programs in place and operational.

It is not a matter of 'IF' but a matter of "How Much?"

View all comments (5)
Add comment

Authorization required for adding comments

Register or

Name

Password

Show password

Register

or Register

Request a new password

Send

or Register

To complete a registration check
your Email:

OK

or Register

A password has been sent to your email address

Edit profile

X

Name

New password

Retype new password

Current password

Save

Cancel

Follow us

Follow us