Bsg head banger
Bsg Head Banger
IT security solutions provider Quick Heal has detected a new malware that has infected as many as 232 banking apps, including some major Indian banks. In a blog post, the company has revealed that the malware puts millions of users at risk of an identity theft as the Trojan has already reached some of the biggest names in Indian banking industry including HDFC, ICICI, AXIS and SBI among others.
Named 'Android.banker.A9480', the malware is being circulated in the form of a fake Flash Player app on third-party stores, Quick Heal said. Once a user downloads the application, they will keep getting pop-ups until administrative rights are granted. As soon as the rights are granted, the app hides its icon and starts carrying out malicious activities in the background such as stealing login credentials, hijacking SMS and uploading contact lists and SMSes on a malicious server.
"If any one of the targeted apps is found on the infected device, the app shows a fake notification on behalf of the targeted banking app. If the user clicks on the notification, they are shown a fake login screen to steal the user's confidential info like net banking login ID and password," informed Bajrang Mane from Quick Heal in the blog post.
Apart from banking apps, the malware has also targeted a bunch of cryptocurrency apps and other apps including Amazon Shopping, eBay and Airbnb.
Quick Heal has also given some tips to people who bank on apps to stay safe from this malware. The company has advised users to download apps only from authorised app stores and not from links provided in SMSes and e-mails. Installing a reliable mobile security app will also come in handy to keep the malware at bay. In addition, always keep your OS and app versions up to date for optimum security.
![[MarJana]](https://www.unp.me/data/avatars/s/108/108056.jpg?1585816329){kind=avatar}
