Security News > 2020 > April > New Android Malware Targets PayPal, CapitalOne App Users
An Android mobile malware has been uncovered that steals payment data from users of popular financial apps like PayPal, Barclays, CapitalOne and more.
EventBot is not currently on the Google Play app marketplace, but researchers said the malware is nonetheless masquerading as legitimate applications.
Researchers were unable to identify any conversations about EventBot on underground forums, where new malware is often introduced, promoted and sold - further strengthening their suspicion that the malware is still undergoing development and has not been officially released.
"With each new version, the malware adds new features like dynamic library loading, encryption and adjustments to different locales and manufacturers," said researchers.
"EventBot appears to be a completely new malware in the early stages of development, giving us an interesting view into how attackers create and test their malware."
News URL
https://threatpost.com/android-malware-paypal-capitalone-app/155341/
Related news
- Crypto-stealing iOS, Android malware found on App Store, Google Play (source)
- SpyLend Android malware downloaded 100,000 times from Google Play (source)
- Vo1d malware botnet grows to 1.6 million Android TVs worldwide (source)
- BadBox malware disrupted on 500K infected Android devices (source)
- North Korea’s ScarCruft Deploys KoSpy Malware, Spying on Android Users via Fake Utility Apps (source)
- New Android malware uses Microsoft’s .NET MAUI to evade detection (source)
- APT36 Spoofs India Post Website to Infect Windows and Android Users with Malware (source)
- Android Malware Exploits a Microsoft-Related Security Blind Spot to Avoid Detection (source)
- New Crocodilus malware steals Android users’ crypto wallet keys (source)