Developers Behind The Android Trojan Svpeng (Trojan-SMS.AndroidOS.Svpeng) appears to have upgraded the malware. The malware can now also be used for phishing attacks on mobile devices. Svpeng is currently targeting the population of Russia, but that doesn't mean that in Greece we are in no danger. We all know that the Internet has no borders.
According to security researchers from Kaspersky, once it infects a mobile device, malware expects the owner to run an application to make a bank transaction. When the application is open, the Trojan inject one Phishing page where users will need to enter their user ID and password.
Except theft bank details, the malware also targets the Google Play. When someone tries to buy an Android app from Google Play, Svpeng, with new injection presents a page Phishing. This time the phishing page asks for card details such as the expiration date and the CVV.
In both cases, the information entered by the user is sent to a server controlled by the hackers who created it.
However, Trojan's functions are not just what we described above. Sends SMS messages to two major Russian banks to find out if there are payment cards associated with the infected phone number. If the card connects to the infected phone, scammers can send orders to transfer money to their account.
So far, Kaspersky has detected 50 variants of malware that you distribute via SMS.