Cryptocurrency

Hackers Draining Android Users’ Bank Accounts As Tap-to-Pay Malware Spreads: Report

Android Users Beware: New Wave of Tap-to-Pay Malware Targeting Payment Card Details

Reports of Android users falling victim to malware attacks that steal their payment card details through tap-to-pay technology are on the rise. U.S. law enforcement has already taken action, making arrests and issuing warnings to banks regarding this concerning trend.

A cybersecurity firm, D3Lab, has recently uncovered a fresh wave of attacks targeting Italian and other European banks. Cyberthieves are using tap-to-pay malware to trick users into tapping their physical cards against their devices, ultimately stealing sensitive financial information.

One common method used by these cybercriminals is to send urgent messages to users, prompting them to update their banking apps. Unknowingly, users download harmful software that leads to the installation of malware on their devices.

Once the malware is installed, it displays a fake verification screen and instructs the user to hold their payment card near the phone. The malware then captures the card information and PIN, sending this stolen data directly to the attackers.

To evade detection, the criminals frequently change the fake websites, switch up the banks they impersonate, and utilize new hosting methods that make it challenging for authorities to shut them down.

Unlike Apple devices that heavily restrict third-party access to NFC, Android apps have greater access to the NFC chip, making them more vulnerable to such attacks.

In the latest wave of attacks, D3Lab reveals that harmful files are now being stored and regularly updated on GitHub, a popular platform used for sharing code among developers. The attackers continuously release new versions with different bank names and technical tactics to avoid being blocked.

Despite ongoing security efforts, the adaptability of these criminals allows them to continue stealing payment card details from Android users.

It is crucial for Android users to remain vigilant and cautious when prompted to update banking apps or provide sensitive information. Staying informed and utilizing security measures can help mitigate the risk of falling victim to such malicious attacks.

Follow us on X, Facebook, and Telegram for more updates.

Don’t Miss a Beat – Subscribe to get email alerts delivered directly to your inbox. Stay informed with The Daily Hodl Mix.

Generated Image: Midjourney

Related Articles

Back to top button