25 June 2017
visit http://events.sap.com/gb/fsi-forum-2017/en/home

Ransomware moves to the mobile - and it's after your banking data

17 June 2014  |  5859 views  |  0 mobile keypad

A Russian-spawned mobile Trojan which combines elements of both financial malware and ransomware is now attacking English language banking apps.

The emergence of the new threat comes as the two-week window for PC users to protect themselves from the infamous Cryptolocker ransomware and Gameover Zeus Trojan draws to a close, following an FBI-led effort to disrupt the criminal botnets running the operation.

The success of these two scams appears to have spawned a number of copycats among mobile malware writers, with Spyeng - a famous money stealing mobile Trojan in Russia - seen as the most potent.

First spotted in the wild last week by Kaspersky Labs, the Trojan initially searches the user's phone against a pre-set list of top US banking applications. Then it locks the screen of the mobile device with the imitation of an FBI penalty notification letter and demands $200 in the form of Green Dot's MoneyPak cards.

More than 91% of attacks are currently targeting English-language users based in US and UK, with India, Germany and Switzerland commanding the remaining nine per cent.

Roman Unuchek, senior malware analyst at Kaspersky Lab says it is impossible to repel an attack once the malware is uploaded.

"The only hope for unlocking the device is if it was already rooted before it was infected," he says. "Then it could be unlocked without deleting the data. One more option is to remove the Trojan, if your phone wasn't rooted is to boot into 'Safe Mode' and erase all data on the phone only, while SIM and SD cards will stay untouched and uninfected."

Comments: (0)

Comment on this story (membership required)

Finextra news in your inbox

For Finextra's free daily newsletter, breaking news flashes and weekly jobs board: sign up now

Related stories

Authorities cripple Gameover Zeus botnet and CryptoLocker ransomware

Authorities cripple Gameover Zeus botnet and CryptoLocker ransomware

02 June 2014  |  5256 views  |  0 comments | 3 tweets | 4 linkedin
Zeus-Carberp mashup Trojan targets banks

Zeus-Carberp mashup Trojan targets banks

29 May 2014  |  5692 views  |  0 comments | 6 tweets | 5 linkedin
Cybercrime-as-a-service comes of age with POS hacks - McAfee

Cybercrime-as-a-service comes of age with POS hacks - McAfee

11 March 2014  |  4762 views  |  0 comments | 2 tweets | 2 linkedin
Cat pics prove hazardous to online bank accounts

Cat pics prove hazardous to online bank accounts

04 March 2014  |  7602 views  |  3 comments | 15 tweets | 8 linkedin
Researchers find more than 100 malware families targeting bitcoin

Researchers find more than 100 malware families targeting bitcoin

27 February 2014  |  6755 views  |  1 comments | 8 tweets | 3 linkedin
'ChewBacca' POS malware uncovered in the wild

'ChewBacca' POS malware uncovered in the wild

31 January 2014  |  5579 views  |  1 comments | 11 tweets | 7 linkedin
SpyEye malware author pleads guilty

SpyEye malware author pleads guilty

29 January 2014  |  2948 views  |  0 comments | 2 tweets | 1 linkedin
Carberp banking malware source code leaked

Carberp banking malware source code leaked

27 June 2013  |  5107 views  |  0 comments | 2 linkedin
Mobile payments expansion spawning criminal undergound

Mobile payments expansion spawning criminal undergound

16 May 2013  |  7978 views  |  2 comments | 9 tweets | 3 linkedin
Cyber gang plots coordinated Trojan attack on 30 US banks - RSA

Cyber gang plots coordinated Trojan attack on 30 US banks - RSA

05 October 2012  |  9137 views  |  0 comments
Banking Trojan hijacks out-of-band SMS security - Trusteer

Banking Trojan hijacks out-of-band SMS security - Trusteer

07 October 2011  |  10080 views  |  4 comments
Zeus trojan infiltrates Blackberry - Trend Micro

Zeus trojan infiltrates Blackberry - Trend Micro

07 March 2011  |  13526 views  |  0 comments
Zeus man-in-the-mobile attack targets Polish ING customers

Zeus man-in-the-mobile attack targets Polish ING customers

22 February 2011  |  12690 views  |  2 comments

Related blogs

Create a blog about this story (membership required)
visit www.response.ncr.comvisit www.events.sap.comvisit wavestone-advisors.co.uk

Top topics

Most viewed Most shared
Live: EBAday 2017, day twoLive: EBAday 2017, day two
9823 views comments | 4 tweets | 5 linkedin
Worldpay pilots app-only mPOS for small retailersWorldpay pilots app-only mPOS for small re...
9309 views comments | 20 tweets | 27 linkedin
Live: EBAday 2017, day oneLive: EBAday 2017, day one
8962 views comments | 3 tweets | 4 linkedin
UK banks will need to change one million sort codes under ring-fencing rulesUK banks will need to change one million s...
8370 views comments | 8 tweets | 25 linkedin
What Banks and their customers can expect for the futureWhat Banks and their customers can expect...
7488 views comments | 7 tweets | 10 linkedin

Featured job

Six Figure Base + Commission + Stock Options
London

Find your next job