{"id":76370,"date":"2023-10-14T17:17:08","date_gmt":"2023-10-14T12:17:08","guid":{"rendered":"https:\/\/myelectricsparks.com\/?p=76370"},"modified":"2023-10-14T17:17:14","modified_gmt":"2023-10-14T12:17:14","slug":"golddigger-android-trojan-that-can-empty-your-bank-account","status":"publish","type":"post","link":"https:\/\/myelectricsparks.com\/golddigger-android-trojan-that-can-empty-your-bank-account\/","title":{"rendered":"GoldDigger Android trojan that can Empty your Bank Account"},"content":{"rendered":"\n
A Trojan Android like this one has emptied everyone’s bank account, which is available on the Play Store. It is distributed through fake versions of the Vietnamese government application on the Google Play Store, which cybersecurity researchers Group-IB name the GoldDigger Android trojan.<\/p>\n\n\n\n
The malicious software found its way into devices through two distinct applications: one posing as an official Vietnamese government portal and the other as an energy company’s app.<\/p>\n\n\n\n
Granting access to the Accessibility Service allows GoldDigger to observe and control various functions of a device, enabling it to access sensitive information like banking app credentials and the contents of SMS messages. <\/p>\n\n\n\n
This stolen data is then sent to command-and-control servers. Researchers have uncovered a code snippet indicating that the malware makes an effort to bypass two-factor authentication and is specifically engineered to deceive banking apps by making them believe that it’s conducting legitimate transactions.<\/p>\n\n\n\n