Security News > 2022 > November > Warning: New Massive Malicious Campaigns Targeting Top Indian Banks' Customers

Cybersecurity researchers are warning of "Massive phishing campaigns" that distribute five different malware targeting banking users in India.

"The bank customers targeted include account subscribers of seven banks, including some of the most well-known banks located in the country and potentially affecting millions of customers," Trend Micro said in a report published this week.

Some of the targeted banks include Axis Bank, ICICI Bank, and the State Bank of India, among others.

The mobile malware has undergone numerous revisions, with a new variant of Elibomi called Drinik observed impersonating the Income Tax Department of India to target users of 18 different banks.

"Elibomi implements an overlay by adding a view to the current window as an evasion technique from users, instead of having an overlay on other apps such as bank applications to steal users' credentials," the researchers said.

In a similar vein, the FakeReward and AxBanker banking trojans, once installed, prompt the victim to grant it permissions to access SMSes and notifications, which are then leveraged to exfiltrate incoming SMS messages.

News URL

https://thehackernews.com/2022/11/warning-this-widespread-malicious.html