BTC $64486.1556
ETH $3493.5274
BNB $586.7387
SOL $134.6672
stETH $3495.2913
XRP $0.4867
DOGE $0.1240
TON $7.2057
ADA $0.3760
wstETH $4088.5086
TRX $0.1188
WETH $3488.5671
WBTC $64295.8483
AVAX $25.3097
UNI $9.9993
DOT $5.6473
LINK $13.7522
BCH $386.2148
MATIC $0.5665
weETH $3632.7427
LTC $74.0929
DAI $1.0007
PEPE $0.0000
RNDR $7.4609
BSC-USD $1.0007
FET $1.5399
CAKE $2.2330
ICP $8.2147
ezETH $3513.4372
USDE $1.0010
KAS $0.1464
ETC $23.4356
NEAR $5.2921
IMX $1.5404
APT $6.8279
XMR $162.4862
HBAR $0.0781
MNT $0.8030
ENS $25.6418
FDUSD $1.0003
OKB $41.8833
ONDO $1.2088
FIL $4.4138
STX $1.6530
MKR $2475.1037
ATOM $6.7546
SUI $0.9046
BTC $64486.1556
ETH $3493.5274
BNB $586.7387
SOL $134.6672
stETH $3495.2913
XRP $0.4867
DOGE $0.1240
TON $7.2057
ADA $0.3760
wstETH $4088.5086
TRX $0.1188
WETH $3488.5671
WBTC $64295.8483
AVAX $25.3097
UNI $9.9993
DOT $5.6473
LINK $13.7522
BCH $386.2148
MATIC $0.5665
weETH $3632.7427
LTC $74.0929
DAI $1.0007
PEPE $0.0000
RNDR $7.4609
BSC-USD $1.0007
FET $1.5399
CAKE $2.2330
ICP $8.2147
ezETH $3513.4372
USDE $1.0010
KAS $0.1464
ETC $23.4356
NEAR $5.2921
IMX $1.5404
APT $6.8279
XMR $162.4862
HBAR $0.0781
MNT $0.8030
ENS $25.6418
FDUSD $1.0003
OKB $41.8833
ONDO $1.2088
FIL $4.4138
STX $1.6530
MKR $2475.1037
ATOM $6.7546
SUI $0.9046
  • Catalog
  • Blog
  • Tor Relay
  • Jabber
  • One-Time notes
  • Temp Email
  • What is TOR?
  • We are in tor
  • Android Trojan “GoldDigger” is rapidly emptying the wallets of Vietnamese users

    No SMS can evade a sophisticated digital thief.

     

    "GoldDigger" is the name of a new Android Trojan that targets banking apps, according to security researchers. Its objective is to attack financial applications in order to steal money from victims and give infected devices remote access.

    The malware targets more than 50 Vietnamese banks, electronic wallets, and cryptocurrency wallets, as Group-IB pointed out. Additionally, there are rumors that the Trojan could spread to Spanish-speaking nations and a larger portion of the Asia-Pacific region.

    Although there is good evidence to suggest that the Trojan has been active since June, it wasn't discovered until August 2023. Researchers gave it the name "GoldDigger" in honor of a particular "GoldActivity" activity they discovered in the APK file they were analyzing.

    The malicious apps have been found to impersonate a Vietnamese government portal and an energy company, asking for a variety of permissions to fulfill their data collection objectives even though the exact scope of the infection is currently unknown.

    Like a lot of other Android malware, the detected GoldDigger instances take advantage of system accessibility services to extend their privileges on the infected device. The Trojan gives attackers access to targeted financial applications, allowing them to interact with them, extract data from them—including credentials—intercept SMS messages, and carry out other nefarious tasks.

    Giving malware access also enables it to fully monitor user activity, view bank account balances, log keystrokes, capture two-factor authentication (2FA) codes, and enable remote device access.

    The attack vectors used to spread "GoldDigger" include fake corporate websites in Vietnam and false websites masquerading as official Google Play Store pages.

    One of the many Trojans that have surfaced recently that target Android banking apps is GoldDigger. In the report, Group-IB emphasized that GoldDigger employs a unique advanced protection mechanism using the software program Virbox Protector, allowing the Trojan to avoid detection and posing challenges for malware analysis.

    Malicious programs aimed at stealing user funds pose a serious threat to financial security. To avoid being scammed, it is important to be careful when installing any applications, paying particular attention to the permissions given. Vigilance and prudence are the key to keeping your finances safe.

    Author reign3d
    Webwyrm network: how Chinese scammers robbed thousands of unemployed people
    How to Create a Temporary Mailbox: Protecting Your Online Privacy

    Comments 0

    Add comment