New malware detected by Kaspersky that pilfers user’s money via Mobile Phones – ZMR Blog
Trending News & Updates

New malware detected by Kaspersky that pilfers user’s money via Mobile Phones

The slew of cyber attacks continues and is becoming a serious concern all around the world. And in line, a new cyber attack has been reported by the Kaspersky. The cyber security firm has reported Xafecopy Trojan—the new malware—to be spotted in India that steals money via the mobile phones of the victims. Nearly 40% target of the new malware has been discovered in India.


The report said, “The experts of the Kaspersky Lab have exposed a mobile malware attacking the Wireless Application Protocol (WAP) billing payment process, pilfering money via the mobile accounts of the victims without their realization.” Xafecopy Trojan is camouflaged as helpful apps such as BatteryMaster and functions normally. Malicious codes are furtively loaded onto the device by the Trojan. On activation of the app, the malware heads to web pages with WAP billing—a type of mobile payment that imposes fees directly to the mobile phone bill of the user.

And thus, a range of services is subscribed by the Trojan silently, according to the report. The method does not necessitate the user to set up a username and password or register credit or debit card. A technology to surpass the “captcha” systems—that is designed to guard users by validating the action is being executed by a human—is used by the malware. In the captcha system, a set of few numbers or letters is shown on the website that should be filled manually by the user.

The report further mentioned, “More than 4,800 users within a span of a month in 47 countries are hit by Xafecopy, with 37.5% of the attacks targeting India identified and blocked by Kaspersky Lab products, followed by Russia, Turkey, and Mexico.” The Kaspersky Lab experts have found traces showing that gangs of cyber criminals circulating other Trojans are distribution malware code amid themselves.

Roman Unuchek, Kaspersky Lab Senior Malware Analyst, said, “Countries having this payment technique famous are being targeted by Xafecopy. The Trojan has also been spotted with diverse variations, such as the capability to text messages to premium-rate phone numbers from a mobile device and to erase received text messages to conceal notifications about stolen money from mobile network operators.”

Altaf Halde, Managing Director South Asia, Kaspersky Lab, said that Android users must be very watchful about the way they download apps. He said, “It is better not to believe third-party applications and whatever applications are downloaded by the users should be locally scanned with the Verify Apps service. But ahead of that, Android users should be having a mobile security suite on their handset.”

Leave A Reply

Your email address will not be published.