Almost 200,000 new cellular banking Trojans emerged in 2022 — a 100% enhance from the yr earlier than and the largest acceleration of cellular malware growth seen within the final six years.
That is based on Kaspersky’s “Cell Threats in 2022” report, which additionally detailed that the agency detected 1.6 million installers for cellular malware inside its telemetry throughout the yr. That is really a decline in risk exercise (down from 3.5 million in 2021 and 5.7 million in 2020), whilst malware creation surges forward.
“This drastic enhance [in banking Trojan development] signifies that cybercriminals are focusing on cellular customers and are more and more extra concerned with stealing monetary information and actively investing within the creation of latest malware,” based on the report, launched at present. It added, “The cybercriminal exercise leveled off in 2022, with assault numbers remaining regular after a lower in 2021. That mentioned, cybercriminals are nonetheless engaged on bettering each malware performance and unfold vectors.”
Banking Trojans are constructed to steal cellular checking account credentials or e-payment particulars, however they will typically be repurposed for different kinds of information theft or used to put in further malware. Notorious malware strains like Emotet and TrickBot, as an example, started life as banking Trojans and rapidly developed to change into one thing way more all-purpose.
Kaspersky’s report famous that whereas unofficial app shops in fact pose the best potential for encountering a banking Trojan, Google Play has been repeatedly populated with “downloaders for banking trojan households, reminiscent of Sharkbot, Anatsa/Teaban, Octo/Coper, and Xenomorph, all disguised as utilities.”
Sharkbot, as an example, was discovered masquerading as a file supervisor that appears benign (and may evade Google’s vetting course of) — till it is put in. At that time, it requests permission to put in further packages that can collectively perform the malicious banking Trojan exercise.