New Delhi: Cyber security researchers discovered a new version of the Drinic Android virus, and it could steal your important bank information. For those unaware, Drinik is an old malware that has been in the news since 2016. In the past, the Indian government issued warnings to Android users about malware that was stealing their personal data to generate income tax refunds.
Using more sophisticated skills, Cyble has now discovered a new version of malware that targets individuals in India and those using 18 specific Indian banks. It now targets users by sending SMS with the APK file. ,ALSO READ: Father’s video of a child washing his MacBook with soap goes viral; Twitter flooded with memes – watch the video here,
To turn off Google Play Protect, the app then asks for permission to use the Accessibility service. Once a user grants permission, the program has the ability to perform specific actions without notifying the user in advance. The software has the capability to record screen movement, record keystrokes and create navigation gestures. ,Also read: Shocker! Husband buried alive wife in grave, Apple Watch saved woman’s life – know how,
When the software has got all the necessary rights and access, it uses WebView to open a legitimate Indian Income Tax website instead of the phishing page loaded earlier. Despite being an actual website, the software records users’ screen activity and keystrokes to access their login information.
To ensure that the information being stolen (User ID, PAN and Aadhaar) is valid, the software also has the ability to verify whether the login was successful or not. The software takes the user to a phishing page which impersonates the official website of the Income Tax Department. Here, users are required to provide their financial information, including account and credit card numbers, CVV and PIN.
How to get out of virus?
– Do not download any app from SMS or untrusted websites.
– Avoid giving new apps access to your call and SMS logs.