Maybank has officially issued a public service announcement, warning them about downloading apps that look and are considered highly suspicious and riddled with malware. The general alert was presented through its official Facebook page and is aimed at all its customers.
According to the official PSA, MyCERT recently issued a security advisory related to certain Android apps that contain malware that can not only view a person’s text messages, but can also download their TAC numbers that are used to conduct banking transactions. To this end, Maybank has also provided a link to the MyCERT consulting portal to show which programs have been reported as malware-plagued, however, since this post we cannot access the site. they have just flooded the site, probably since Maybank’s withdrawal increased.
That said, a quick Google search shows that one of the apps containing malware that has gained activity recently is known as the “SMSSpy” campaign. The strategies and tactics used are new: actors will ask if the victim is interested in making “cash easy. “
From there, they tell the victim that they just have to stick to the instructions, but also to provide them with their bank details, so that they can “give” them their earnings, at the end of a task that never existed in the first place. . By then, the malware will have done its job.
This is not the first time that the topic of malware and fraudulent programs has come up. Last April, we reported on malware discovered through Slovakia-based cybersecurity firm ESET Research, which said the apps were aimed at consumers from 8 Malaysian banks. He found that several of those apps posed as cleaning services, adding Grabmaid, maria’s Cleaning, and Maid4u, among others.
Simply put, the crusade was quite complicated and really invited users to download the malware from Google Play, any attempt to install the apps redirects users to servers owned by the scammers, where they would then continue to ask for monetary details. A dead gift to instinctive Americans would be that, when installing the apps, there was no real form of validation; a security requirement that is regularly accommodated through all banks and monetary establishments these days.
Once they have submitted their bank details, they will get an error message related to their transaction. However, at this point, the criminals have already obtained the credentials.
– Abah (@chairman_GLC) March 30, 2022
In that regard, we leave you with the same message of caution that we have preached: beware of some of those fraudulent sites and apps, and apply a very clever dose of skepticism towards text messages and messages sent from unknown numbers.
(Source: Maybank/Facebook)
Discord brought a new quality of life feature that most of us never learned we needed. Available now to all users. . .
Instagram launches AMBER Alerts on its platform, with the aim of facilitating the search for missing children. The system,. . .
Lately, Twitter is running a new feature that will allow users of the platform to be notified when. . .
The Government of Perak has introduced a new tourism app called Perak Pass Plus (PPP) commissioned through Tourism Perak to. . .
Consumer Technology Malaysia News and Reviews
©2022 LOWYAT MEDIA, LLC. ALL RIGHTS RESERVED.