Skip to main content
  1. Home
  2. Mobile

Zitmo trojan attacking Android bank transactions

By
Image used with permission by copyright holder

Zitmo, a Trojan spyware app that poses as banking activation software, has now been modified to attack Android-based devices. The virus, which steals financial transaction information, has previously been successfully used on Symbian, BlackBerry and Windows Mobile devices.

Axelle Apvrille, an author at the security blog Fortinet, said Zitmo is being put to use by the ZeuS botnet gang.

Recommended Videos

“The malware poses as a banking activation application,” she said. “In the background, it listens to all incoming SMS messages and forwards them to a remote Web server. It’s simple, but just enough for the ZeuS gang to grab your banking mTANs.”

Related

MTAN stands for “mobile transaction authentication number” or, if you’re not a banker, a single-use password for approving bank transactions while you’re on the go. MTANs are sent by text message between the bank and customer, and are recommended for use by the Federal Financial Institutions Examinations Council because they offer a type of authentication that doesn’t go through regular channels. In other words, they are supposed to be harder to crack.

The Zitmo attack works because ZeuS figured out how to get in early. The malware first infects a user’s PC and waits for the user to visit their bank site on their phone. Posing as a new layer of security software, Zitmo prompts users to download itself. When that happens, it controls the user’s PC and phone, and will continue sending crucial information to outside parties.

Editors’ Recommendations

Topics
Derek Mead
Derek Mead
Former Digital Trends Contributor
We loved the Google Pixel 9 Pro XL, and it’s on sale today
Pixel Studio app running on the Google Pixel 9 Pro XL.

We’re just a week away from Christmas 2024, which means there’s going to be a lot of folks doing last-minute shopping, both in stores and online. And if you’ve been perusing the web for great phone deals and you’re looking to stay away from iPhones and Samsung Galaxy hardware, we found the perfect offer for you:

Right now, you can order the 256GB unlocked version of the Google Pixel 9 Pro XL, and you’ll only end up paying $950. At full price, this phone sells for $1,200. We tested the Pixel 9 Pro XL back in October, and reviewer Joe Maring said, “The Google Pixel 9 Pro XL offers stunning hardware, lovely cameras, and much-improved specs — making it one of 2024's best flagship smartphones.”

Read more
Apple iPad mini (2024) vs. iPad Air (2024): Which one to buy?
ipad mini 2024 and ipad air 2024 product shots on a light maroon background

Apple launched a bunch of iPads in 2024, including the much-awaited iPad mini refresh and a new iPad Air, which was the first to be available in two screen sizes. The company's tablet portfolio is now bigger than ever, which can be confusing if you are in the market for a new great tablet. Even if your priorities are clear with size and price, there are a number of overlapping models, which can make decision-making difficult.

Do you need a more pocketable iPad or a more powerful tablet? Are you fixated on a specific screen size? Are you confused about how much power is required to run your creative tasks? Which is the best iPad overall? Don't worry if you don't have answers to any of these questions right now. This comparison between two of our favorite iPads from 2024 will help answer them so you can make an informed decision.
iPad mini (2024) vs iPad Air (2024): specs

Read more
New research finds that your smartwatch band is laced with toxic forever chemicals
Someone wearing the Pixel Watch 3, Galaxy Watch 7, and Apple Watch Series 10.

Just over a year ago, a study published in the Advances in Infectious Diseases journal detailed that 95% of the wearable straps for smartwatches and fitness bands were infected with different kinds of harmful bacteria.

Now, another research published in a reputed journal has revealed an even more sinister trend in straps sold for wrist-worn smart wearables. The paper, published in the ACS’ Environmental Science & Technology Letters, highlights the presence of perfluorohexanoic acid (PFHxA) in fluoroelastomer bands offered by various top brands.

Read more