Explore the latest news and trends  

Sign up for our weekly security newsletter

Be the first to receive important updates on security


Mobile Malware for Financial Apps can also Encrypt Data

According to Kaspersky Lab, Faketoken an installation suite in its modified form is capable of capturing credentials from over two thousand financial applications of Android. From telemetry data, the security company computes that Faketoken over time victimized 16,000-and-more users within 27 countries. Those from Ukraine, Russia, Thailand and Germany were the greatest affected. In July, researchers saw the malware's variants appearing for the first time. Theregister.co.uk posted this, December 20, 2016.

Faketoken's recently extended capability of encrypting data was unexpected because the usual mobile ransomware strains mainly aim at locking the device, and not its data. When Faketoken strikes an Android, the latter's data consisting of media files and documents like videos and images are encrypted with the aid of AES symmetric algorithm which sometimes the user can decrypt devoid of even making any ransom payment.

Faketoken at the start of its process of infection, forces the user to provide administrator rights, consent for overwriting with other applications alternatively to work as default SMS app all of which frequently compel users towards complying. In addition to other things, Faketoken with the admin rights becomes capable of pilfering data both indirectly via phishing sites and directly such as files and contact information.

The Trojan is capable of overwriting Google's Play Store, showing one phishing site while attempting at duping marks in such a way that they divulge their payment card information. One more phishing template masquerades as the login page of Gmail.

Faketoken's modified version further attempts at substituting application shortcuts related to Web-browsers, instant messengers and social media sites with different variants of its own. While the purpose behind this isn't clear since the replaced symbols too take onto the identical lawful apps, one probability is that sinister code developers are creating the basics for future happenings.

Security researchers at Kaspersky Lab have spotted thousands of Faketoken installation suites which encrypt data. To remain protected from Faketoken, Kaspersky urges Android owners to maintain back-up of their entire data, not give away consents and rights without verifying the request's authenticity, and load anti-malware software as well as maintain up-to-date operating system.

ยป SPAMfighter News - 12/27/2016

3 simple steps to update drivers on your Windows PCSlow PC? Optimize your Slow PC with SLOW-PCfighter!Email Cluttered with Spam? Free Spam Filter!

Dear Reader

We are happy to see you are reading our IT Security News.

We do believe, that the foundation for a good work environment starts with fast, secure and high performing computers. If you agree, then you should take a look at our Business Solutions to Spam Filter & Antivirus for even the latest version of Exchange Servers - your colleagues will appreciate it!

Go back to previous page