In Boston, Cybereason, is a company specializing in the development of technology related to cybersecurity. Today, the latter has just discovered a relatively dangerous Android malware. Called EventBot, this malicious software’s mission is to loot the bank accounts of its victims.
You could say that the targets of this malware are only in the United States or China and that it will be arrested before arriving in Europe. Well no, where it is important to insist, it is that this malware targets mainly France, more particularly PayPal users, Caisse d ‘Épargne customers as well as Société Générale.
Cybereason researchers first detected this malware in March. According to the company’s report, “this is a mobile banking Trojan capable of taking advantage of the accessibility features of Android to steal user data.” This malware is fairly optimized since it can easily bypass two-factor authentication via SMS.
Cybereason explains that this software is found in the APKs of over 200 Android apps. It is therefore currently outside the Google Play Store. Among these 200 applications, we therefore find PayPal, but also Revolut, Monese, HSBC, Barclays, UniCredit or TransferWise.
If France is affected by this alert, EventBot has also been spotted in the United States, Italy, the United Kingdom, Spain, Switzerland, and Germany. As we explained, EventBot is very efficient, if it is able to pass two-factor authentication, it is also very discreet since as soon as a smartphone is infected EventBot hides under the appearance of a harmless application.
It is precisely thanks to this reassuring appearance that the malware will ask you for various authorizations to discreetly set up its trap. Once in place, the software can very easily collect your bank details, your account number, card number and password to connect to your customer account.
Cybereason’s advice is very simple, it’s important not to download an APK from unknown sources.
I am sorry that this post was not useful for you!
Let me improve this post!
Tell me how i can improve this post?