Security News > 2020 > April > New Android Malware Targets PayPal, CapitalOne App Users
An Android mobile malware has been uncovered that steals payment data from users of popular financial apps like PayPal, Barclays, CapitalOne and more.
EventBot is not currently on the Google Play app marketplace, but researchers said the malware is nonetheless masquerading as legitimate applications.
Researchers were unable to identify any conversations about EventBot on underground forums, where new malware is often introduced, promoted and sold - further strengthening their suspicion that the malware is still undergoing development and has not been officially released.
"With each new version, the malware adds new features like dynamic library loading, encryption and adjustments to different locales and manufacturers," said researchers.
"EventBot appears to be a completely new malware in the early stages of development, giving us an interesting view into how attackers create and test their malware."
News URL
https://threatpost.com/android-malware-paypal-capitalone-app/155341/
Related news
- Russia targets Ukrainian conscripts with Windows, Android malware (source)
- Android malware "FakeCall" now reroutes bank calls to attackers (source)
- New FakeCall Malware Variant Hijacks Android Devices for Fraudulent Banking Calls (source)
- New Android Banking Malware 'ToxicPanda' Targets Users with Fraudulent Money Transfers (source)
- Cyber crooks push Android malware via letter (source)
- SpyLoan Android malware on Google play installed 8 million times (source)
- 8 Million Android Users Hit by SpyLoan Malware in Loan Apps on Google Play (source)
- New DroidBot Android banking malware spreads across Europe (source)
- New DroidBot Android malware targets 77 banking, crypto apps (source)
- Germany sinkholes BadBox malware pre-loaded on Android devices (source)