Thursday, January 27, 2022

Carberp Trojan for mobile found on Google Play

Kaspersky Lab researchers have recently discovered apps carrying the Carberp-in-the-Mobile (CitMo) component that allows criminals to steal mobile transaction authentication numbers (mTANs) sent by banks.

This will assist the Carberp Trojan installed on the users computer’s to empty the victims bank accounts.

The CitMo components were boxed as mobile applications from Russian Sberbank and Alfa-Bank, and popular social network VKontakte. When installed, the CitMo component would work quietly in the background.

The researchers discovered the backdoored apps last Wednesday, informed Google about them, and was removed from the market on Thursday.

About FastFlux

Owner of ZeroSecurity, interested in programming, malware analysis and penetration testing. If you would like to write for the ZeroSecurity team, please use the contact form above.

Check Also

Silent OS 3.0 for Blackphone Completely revamped

Version 3.0 migrates Silent OS to Android Marshmallow 6.0.1 and delivers the Android safety patch …