Security News > 2020 > April > New Android Malware Targets PayPal, CapitalOne App Users
An Android mobile malware has been uncovered that steals payment data from users of popular financial apps like PayPal, Barclays, CapitalOne and more.
EventBot is not currently on the Google Play app marketplace, but researchers said the malware is nonetheless masquerading as legitimate applications.
Researchers were unable to identify any conversations about EventBot on underground forums, where new malware is often introduced, promoted and sold - further strengthening their suspicion that the malware is still undergoing development and has not been officially released.
"With each new version, the malware adds new features like dynamic library loading, encryption and adjustments to different locales and manufacturers," said researchers.
"EventBot appears to be a completely new malware in the early stages of development, giving us an interesting view into how attackers create and test their malware."
News URL
https://threatpost.com/android-malware-paypal-capitalone-app/155341/
Related news
- New FireScam Android malware poses as RuStore app to steal data (source)
- New FireScam Android data-theft malware poses as Telegram Premium app (source)
- FireScam Android Malware Poses as Telegram Premium to Steal Data and Control Devices (source)
- DoNot Team Linked to New Tanzeem Android Malware Targeting Intelligence Collection (source)
- Crypto-stealing iOS, Android malware found on App Store, Google Play (source)
- SpyLend Android malware downloaded 100,000 times from Google Play (source)