Crooks phish for banking credentials and social app logins
May 26, 2016 23:29 GMT · By Catalin Cimpanu SpyLocker is the name given by Intel Security (McAfee) researchers to a new variant of Android malware that shows credential phishing popups for customers of EU banks and some popular Android applications.
The trojan was actually spotted in a previous campaign a while back, during which it disguised itself as a Flash Player app for Android users, distributed via websites with adult material. The initial attack targeted the customers of banks in Australia, New Zealand, and Turkey.
Intel Security researchers are now reporting on a new wave of attacks, which distribute the same fake Flash for Android app, or sometimes a fake Android system update app, in order to infect users. The difference, this time, is that, besides their own servers, crooks are also utilizing hacked WordPress and Joomla sites.
http://i1-news.softpedia-static.com/images/fitted/620x/campaign-with-android-spylocker-malware-targets-customers-of-eu-banks-504547-2.jpg
A malicious website offering an app for download infected with SpyLocker
Full Article
