SBI, ICICI, Yes, BoB, IOB, Citi bank customers' account, credit card details may be at risk!
Account and credit card details of thousands of customers of seven banks may be at risk, if a report by an IT security firm is to be believed.
SBI three-fold strategy for PPF, small saving schemes: Income tax rebate, Interest rates on deposits and more
SBI Alert! State Bank of India, NPCI join hand for YONO users
SBI customers' alert: You may face problem in availing these services today—Check State Bank of India services that will be affected on April 1
SBI Personal Loan: Will your spouse’s income be included while calculating loan amount? Know Here in detail
SBI Card – Are you burdened by payments for big ticket purchase? Here is an opportunity to pay as low as Rs 52Account and credit card details of thousands of customers of seven banks may be at risk, if a report by an IT security firm is to be believed. Fake apps of State Bank of India, ICICI Bank, Axis Bank, Bank of Baroda (BoB), Yes Bank, Indian Overseas Bank (IOB) and Citi Bank are available on Google Play and they have stolen data of thousands of bank customers, said a report by IT security firm Sophos Labs. The report said that these fake android apps have logo of respective banks, which make it difficult for customers to differentiate between the fake and original apps. Deceptive malware in these apps may have stolen thousands of customers' account and credit card details.
However, PTI reported that some of the banks mentioned in the report have said they havn't come across any such fake apps. Some banks have started inquiry and also informed the CERT-In -- the national nodal agency for responding to computer security incident.
Target banks
According to the report, the fake apps have targeted seven banks - SBI, ICICI, Axis, Indian Overseas, BoB, Yes Bank and Citi Bank.
A Citi India spokesperson told PTI that the is not affected by these fake apps mentioned in the report. The bank has also written to the Sophos Labs to remove the Citi's name from the report. Yes Bank said it has informed the bank's cyber fraud department about the matter. State Bank of India hasn't responded yet.
Modus Operandi
The fake apps lured victims to download and use them, either by masquerading as Internet apps or e-wallets. They promised customers rewards, including cash back on purchases, free mobile data or interest free loans. Some of the fake apps also claimed to be providing a too-good-to-be-true service, enabling users to withdraw cash from an ATM and have it delivered to their doorstep, said the report.
"Deceptive malware may have stolen thousands of Indian sub-continent bank customers account data or credit card numbers," Pankaj Kohli, threat researcher, SophosLabs, said in the report. It further said that fake apps are not new to Android and this sort of malware will continue to find its way into the android app store.
"Some are blatant copies of real apps, while a few are much more dangerous as they seed malware and steal data from user accounts. Users should always use antivirus software, which provides malware protection and internet security to keep users protected and stop these fake apps from stealing data," said the report.
Get Latest Business News, Stock Market Updates and Videos; Check your tax outgo through Income Tax Calculator and save money through our Personal Finance coverage. Check Business Breaking News Live on Zee Business Twitter and Facebook. Subscribe on YouTube.
