Beware: This Android Malware Can Steal Your Banking OTP

Advertisement
By Sumit Chakraborty | Updated: 5 January 2018 13:31 IST
Highlights
  • Malware is known as Android.banker.A9480
  • Android banking trojan steals login ID, password, SMS, contact lists
  • Not only banking apps, but cryptocurrency apps affected too

An Android malware is reportedly targeting over 232 banking apps including a few banks in India. The Trojan malware, named 'Android.banker.A9480', is designed to steal personal data from users, Quick Heal Security Labs reports. Similar to other banking malware, this one also sneaks into login data, SMS, contact lists and uploads them to a malicious server. Additionally, apart from the banking apps, this Trojan also targets cryptocurrency apps present on a user's phone.

Quick Heal lists the Indian banking apps that are targeted by the Android banking Trojan malware: Axis mobile, HDFC Bank MobileBanking, SBI Anywhere Personal, HDFC Bank MobileBanking LITE, iMobile by ICICI Bank, IDBI Bank GO Mobile+, Abhay by IDBI Bank Ltd, IDBI Bank GO Mobile, IDBI Bank mPassbook, Baroda mPassbook, Union Bank Mobile Banking, and Union Bank Commercial Clients.

ICICI Bank Says Mobile App Malware Not a Threat to Customers

Advertisement

Android.banker.A9480 malware gets circulated via a fake Flash Player app on third-party stores, Quick Heal said. The Flash Player app is a popular target for cybercriminals due to its prevalence. Once users download the malicious application, they get several prompts to activate administrative rights. The app sends numerous pop-ups to victims until the administrative privileges are activated, the report added.

Advertisement

Once the app is installed on a smartphone, the icon gets hidden when the user taps on it. The malicious app keeps working in the background while checking for one of the 232 banking apps. Further, if the app finds one of the targeted apps, it sends a fake notification that resembles the banking app. When users open the notification, they get a fake login window that is then used by the attackers to extract confidential data like login ID and password.

As per the blog posted by Quick Heal, the malware can process commands like sending and collecting SMS, upload contact list and location, display fake notification, accessibility and GPS permission, and more. Since the malware can intercept incoming and outgoing SMS from an infected smartphone, it is also able to bypass the OTP based two-factor authentication on the user's bank account.

 
Post your comments

Get your daily dose of tech news, reviews, and insights, in under 80 characters on Gadgets 360 Turbo. Connect with fellow tech lovers on our Forum. Follow us on X, Facebook, WhatsApp, Threads and Google News for instant updates. Catch all the action on our YouTube channel.

Further reading: Android, Malware Attack, Malware, Android App Malware, Banking, Banking apps, Trojan
LG to Rebrand Its G Series Flagship Smartphones in 2018: Report
Google Said to Explore Sale of Restaurant Review Guide Zagat
Advertisement

Related Stories

Google Announces Emergency Live Video for Sharing Visual Information with Emergency Services on Android
11 December 2025
How to Delete Your Snapchat Account on Mobile and Web: A Step-by-Step Guide
9 December 2025
The Android Show: Google Teases AI Smart Glasses Alongside Likeness, PC Connect For Samsung Galaxy XR Headset
9 December 2025
Truecaller Introduces New Feature to Protect the Entire Family from Call-Based Scams
9 December 2025
Apple-Google Reportedly Collaborate to Make Switching Between Android and iPhone Easier
9 December 2025
Popular on Gadgets
Latest Gadgets
Popular Mobile Brands
#Trending Stories
  1. Pixel 10 Series Gets Price Cuts During Google's End of Year Sale: See Offers
  2. Motorola Edge 70 With 5,000mAh Battery Launched in India at This Price
  3. OnePlus 15R Storage Options Leaked: Here's How Much It Might Cost in India
  4. RAM Crisis 2026: 16GB Phones Out, 4GB Models Making a Comeback
  5. Vivo S50, S50 Pro Mini With Snapdragon Chips Launched at These Prices
  6. Mrs Deshpande OTT Release Date: Madhuri Dixit's Starrere to Premiere on This Date
  7. Apple Fitness+ Service Is Now Available in India: See Features
  8. Logitech MX Master 4 Launches in India With These Features
  9. MacBook Air (2025) With M4 Chip Available at This Discounted Price
  10. Oppo Reno 15c With Snapdragon 7 Gen 4 SoC Launched at This Price
#Latest Stories
  1. Lenovo Idea Tab Plus Launched in India With 12.1-Inch Display, 10,200mAh Battery: Price, Specifications
  2. The End of 16GB RAM Phones? AI Boom Forces Smartphone Makers to Bring Back 4GB Models
  3. Xiaomi 17 Ultra Tipped to Launch Alongside Redmi Turbo 5 Series, New Wearables
  4. Mrs Deshpande OTT Release Date: Madhuri Dixit’s Psychological Thriller Premieres on This Date
  5. Knives Out Now Streaming on Lionsgate Play: What You Need to Know
  6. The Copenhagen Test OTT Release Date: When and Where to Watch it Online?
  7. Tell Me Softly Out on OTT: Everything You Need to Know About This Spanish Teen Romance Film
  8. Vivo S50 Pro Mini Launched With Snapdragon 8 Gen 5 SoC, Vivo S50 Tags Along: Price, Specifications
  9. Clair Obscur: Expedition 33 Gets New 'Thank You' Update After Winning at The Game Awards
  10. Apple Fitness+ Now Available in India With Custom Workout Programmes: Price and Other Details
Gadgets 360 is available in
Follow Us
Download Our Apps
Available in Hindi
© Copyright Red Pixels Ventures Limited 2025. All rights reserved.