Marcher Banker Trojan for Android now Targets UK Banks Too

An Android malware crafted for seizing banking logins is now targeting banks in U.K ever-since its last upgrade.

According to the security research group X-Force of IBM, the Android Trojan that has been attacking banks in France, Austria, Germany, Turkey and Australia is now also targeting 9 prominent banks of UK.

IBM explains that the particular Android malware, which's called Marcher, has been into existence starting late-2013, first appearing like a tool that targeted compromised phones and stole credit card information via illegal cyber-crime forums. During 2016, Marcher started attacking banks, disguised like banking applications, IBM adds. Theregister.com posted this, June 2, 2016.

While every Android version is susceptible to Marcher infection, the malware doesn't yet have an iOS edition. Security researchers from Check Point the security firm stated that the maximum infections take place on phones having Android versions Lollipop, KitKat and Jelly Bean, indicating their popularity.

Marcher proliferates via phishing e-mails, which pose as certain Flash update, while direct end-users towards taking their systems to the latest upgrade for safeguarding them from ID-theft or data-loss. So according to Check Point, when any end-user follows the web-link, the Trojan in a three phase procedure, so cheats him that he starts activating the malware for installation from unfamiliar entities (not Google Play) while subsequently pulls down the malicious application.

Now, even with the above features of Marcher which let it for phishing victims off banking credentials, Check Point asserts the Trojan was off from such phishing for sometime. However, changes occurred during May when Marcher was given additional support to attack 9 large UK banks so it resumed its phishing for banking application credentials.

Moreover, Marcher can now also display phishing overlays within the phone's browsers, unlike earlier when it merely displayed full-screen overlays enclosing entire exhibit of the mobile.

Marcher reaches the mobile phones through text messages and spam mails which dupe potential victims into believing they're taking down some Flash update.

Android owners are recommended to not download applications from sources other than Google's Play Store as well as not allow any application access their administrative rights except for trusted or very familiar entities.

» SPAMfighter News - 6/8/2016