Security researchers have found a new strain of malware targeting banking apps on Android devices.
Trend Micro researchers spotted two ATM malware families one of which, Prilex, uses highly targeted attacks to hijack banking applications and another, Cutlet Maker, which is a flexible standalone application for emptying the ATM's safe.
An attack campaign targeting Android users in Austria has been employing a novel trio of techniques to steal their funds: a credentials phishing web page, malicious banking app overlays, and credit card phishing screens.
Researchers discovered a Russian fake banking application that can evade detection by changing a device's password if the victim tries to remove the app.
The Trojan family dubbed SlemBunk that is targeting Android-based banking app users has been observed masquerading as the legitimate apps of financial institutions in North America, Europe and Asia Pacific.