Kaspersky researchers have just discovered a malware called Fakedtoken, able to steal the banking details of Android smartphone users. A particularly redoubtable and sophisticated malware. We cannot repeat it enough: do not enter your bank details into applications and websites from unknown sources or your bank account may be emptied very quickly. Unfortunately, it seems that even Google Play Store applications are not necessarily reliable.
Kaspersky’s security researchers, who recently launched an excellent free antivirus, have just discovered a malware that can steal a user’s banking details, but also monitor their text messages and phone calls. Called Fakedtoken, this malware was created last year and has improved over time.
Initially, this malware was a Trojan capable of intercepting text messages to steal banking IDs. Now, this malware spreads via SMS sent in waves to steal banking identifiers by offering users to upload photos.
Fakedtoken: a particularly dangerous and sophisticated malware
If the victim has the misfortune to download the photo in question, the file installs invisible icons and the malware is grafted to banking applications or applications like Android Pay, Google Play, and hotel booking applications, Plane or taxi.
Subsequently, if the user enters his bank details in one of his applications, the creator of the malware, unidentified to date, receives the contact details and can use the victim’s bank account by usurping his identity. The malware is even able to intercept security SMS sent by some banks before authorizing payments and other transfers.
Experts have said that the reported cases of malware are now more than Russia and the former Soviet Union, although it is likely that more complete versions will be written in the future. Also, by checking the codes obtained from Fakedtoken, the focus of this malware is on Russian language words and the like, as a result of which the target users of the program are residents of the countries.
However, it is possible that this malware eventually spread to the rest of the world, especially in France. In any case, this malware demonstrates the extent to which smartphones are increasingly threatened by extremely sophisticated cyber-attacks.