New Ginp banking malware targets credit/debit card information via screen overlay
By MYBRANDBOOK
A new form of sophisticated Android banking malware named “Ginp” has been uncovered by researchers. It targets Android users via screen overlay attack to steal banking credentials, SMS & credit/debit card details to empty victims’ bank account.
The Ginp malware was initially spotted at the end of the October 2019; since then the malware is continuously under development, and 5 different versions of the Trojan have been released.
It is being studied that attackers are mainly interested in Spanish based bank users. They are also continuously releasing regular updates, and some evidence found the Gip malware copying code from infamous Anubis banking Trojan.
Ginp is using multiple step overlay to avoid raising suspicion and the initial version was distributed via fake "Google Play Verificator” app to steal the only incoming and outgoing SMS data.’
The next version has been released with a set of new features and spreading via masquerading as a fake “Adobe Flash Player” app to target some of the social and utility apps such as Google Play, Facebook, WhatsApp, Chrome, Skype, Instagram, and Twitter.
The 3rd version of Ginp is launched to focus on Banking sectors, and the attackers mainly target the 24 apps belonging to 7 different Spanish banks: Caixa bank, Bankinter, Bankia, BBVA, EVO Banco, Kutxabank and Santander.
Once the malware landed into the device, as a first step, it removes the icon and seeks the victim for the Accessibility Service privilege. After it gets the permission, the Ginp itself grants some of the sensitive additional permission, such as send messages, and make calls, without requiring any further action from the victim.
Ginp targets various social media apps such as Facebook, WhatsApp, Skype, Twitter, Chrome, Instagram, Snapchat and implements the generic credit card grabber overlay screen to harvest the card number, CVV, Date etc.
BHIM to join e-commerce, competing with PhonePe and Google Pay
The government-supported payment software BHIM is getting ready to join t...
The latest version of X helps prevent deepfakes on social medi
To combat deepfakes and shallowfakes, Elon Musk revealed a new update t...
India and Namibia collaborate on a payment system similar to U
Once operational, the platform will enable digital transactions in Namibia,...
Sebi issues show-cause notices to six Adani group firms
Sebi issued show-cause notices to six Adani Group firms, including Adani ...
BHARAT ELECTRONICS LTD.
OPTIEMUS INFRACOM
JUVAS SOLUTIONS PVT. LTD.
LENOVO GROUP LTD.
Technology Icons Of India 2023: Sunil Bharti Mittal
Sunil Bharti Mittal is the Founder and Chairman of Bharti Enterprises,...
Technology Icons Of India 2023: Natarajan Chandrasekaran
Natarajan Chandrasekaran is the Chairman of the Board of Tata Sons, th...
Technology Icons Of India 2023: Lt Gen (Dr.) Rajesh Pant (Retd.)
LT Gen(Dr.) Rajesh Panth (Retd.), National cyber security coordination...
BSE provides highly secure, efficient and transparent market for trading
BSE (formerly known as Bombay Stock Exchange Ltd.) is Asia's first & t...
NIC bridging the digital divide and supporting government in eGovernance
The National Informatics Centre (NIC) is an Indian government departme...
STPI encouraging software exports from India
Software Technology Parks of India (STPI) is an S&T organization under...
BEETEL TELETECH LTD.
: Beetel is one of the oldest and most reputed brands in the Industry,...
TECHNOBIND SOLUTIONS PVT. LTD.
TechnoBind’s business model is focused on identifying and partnering...
R P TECH INDIA
R P Tech is recognized for its diverse products portfolio, value-add...