Developers Behind The Android Trojan Svpeng (Trojan-SMS.AndroidOS.Svpeng) looks like they upgraded it malware. It malware μπορεί να χρησιμοποιηθεί πια και για επιθέσεις phishing στις κινητές συσκευές. Το Svpeng προς το παρόν στοχεύει τον πλυθησμό της Ρωσίας, αλλά αυτό δεν σημαίνει ότι στην Ελλάδα δεν διατρέχουμε κανένα κίνδυνο. Όλοι γνωρίζουμε ότι το Internet it has no borders.
According to the researchers security from Kaspersky, once it infects a mobile device, malware expects the owner to run an application to make a bank transaction. When the application is open, the Trojan inject one Phishing σελίδα όπου οι χρήστες θα πρέπει να εισάγουν το αναγνωριστικό χρήστη και τον code their access.
In addition to banking theft, malware also targets Google Play. When someone tries to buy an Android app from Google Play, Svpeng, with a new one injection presents a page Phishing. This time the phishing page asks for card details such as the expiration date and the CVV.
In both cases, the information entered by the user is sent to a server controlled by the hackers who created it.
However, Trojan's functions are not just what we described above. Sends SMS messages to two major Russian banks to find out if there are payment cards associated with the infected phone number. If the card connects to the infected phone, scammers can send orders to transfer money to their account.
So far, Kaspersky has detected 50 variants of malware that you distribute via SMS.
