Security News > 2020 > April > New Android Malware Targets PayPal, CapitalOne App Users
An Android mobile malware has been uncovered that steals payment data from users of popular financial apps like PayPal, Barclays, CapitalOne and more.
EventBot is not currently on the Google Play app marketplace, but researchers said the malware is nonetheless masquerading as legitimate applications.
Researchers were unable to identify any conversations about EventBot on underground forums, where new malware is often introduced, promoted and sold - further strengthening their suspicion that the malware is still undergoing development and has not been officially released.
"With each new version, the malware adds new features like dynamic library loading, encryption and adjustments to different locales and manufacturers," said researchers.
"EventBot appears to be a completely new malware in the early stages of development, giving us an interesting view into how attackers create and test their malware."
News URL
https://threatpost.com/android-malware-paypal-capitalone-app/155341/
Related news
- PixPirate Android malware uses new tactic to hide on phones (source)
- Vultur banking malware for Android poses as McAfee Security app (source)
- SoumniBot malware exploits Android bugs to evade detection (source)
- New Brokewell malware takes over Android devices, steals data (source)
- New 'Brokewell' Android Malware Spread Through Fake Browser Updates (source)