the Amount of funds stolen from Bank accounts in Russia with the help of viruses for mobile devices on Android for the year increased almost five times, to the experts ‘ reports. Trojans are distributed via infected websites, fake mobile apps and willfully change the contents of the web sites which users visit. However, the largest Russian banks such as Sberbank, yet do not notice.
the Cybercriminals between April 2015 and March 2016 kidnapped 348,6 million rubles from the accounts in Russian banks with the help of Trojans for mobile devices on Android OS. It is stated in the report Group-IB company. Compared to the same period 2014-2015 the amount of theft increased by 471%. In Russia every day the victims of the 350 users of Android-devices. While stealing from individuals by using Trojans to your PC “almost stopped”: the income of criminals decreased by 83%, to 6.4 million rubles, found in Group-IB.
At the same time, a growing number of dangerous mobile apps for Android, they “mimic”, for example, under Pokemon Go. The Trojans also began to spread through exploits (a computer program that uses software vulnerabilities to conduct attacks on computer systems). They allow you to install on your smartphone malicious software when you visit a hacked website invisibly to the user. In addition, the so-called web injections for mobile devices, which enable an attacker to manipulate the page display in the browser. For example, to add new items in the login form Internet banking or to hide fraudulent transactions in your payment history, talk to Group-IB. The growth in theft will grow three-digit rate worldwide, the company forecast.
In Russia there were arrests, criminals, kidnap money with the help of Android Trojans. In August, employees UMVD the Russian Federation across the Tomsk region jointly with the security service of Sberbank detained a group of hackers, who was involved in the theft of money from Bank cards with the help of virus attacks on smartphones and tablets running on Android. The program, which was used by the scammers, once installed on the mobile device requested the balance linked to the credit card number, hide incoming notifications, and then transferred the money to attacker-controlled accounts.
In response to request “b” to comment on the report Group-IB, the press service of Sberbank reported that they did not see “such a dramatic change in the attack vectors”: “Rather, the situation came to a plateau”. Sberbank also noted that in the mobile application Sberbank integrated antivirus, also is working on updates to virus databases and product improvement.
“the Reason is illiteracy of users, than successfully used by scammers who want to develop a falsified application or build additional functionality in the paid, but hacked apps downloaded by users from torrent-trackers,” says the Director of practice on provision of services in the field of independent financial investigations (forensic), PwC Russia Alexander Dmitriev. He notes that the need to strengthen security measures in the OS itself, and in the process control when you publish applications. “The smartphone is perceived more as a phone and not a computer, so users don’t notice many of the risks associated with its use,”— said the head of Application Security Solar Security Daniil Chernov. He notes that the prevalence of Android leads to the fact that the applications of this system are attacked more often than others. Google developing Android, did not respond to a request “b”.