Tuesday, December 6, 2022
HomeDigit NewsNew Drinik Android Virus is stealing your bank and credit card details

New Drinik Android Virus is stealing your bank and credit card details

Drinik Android Trojan: Did you know that a new version of Drinik Android Trojan has been discovered that can steal some of your important bank details? Drinik is an old malware that has been in the news since 2016. The Indian government had earlier issued a warning to Android users about this malware, which was stealing a lot of user information in the name of generating income tax refunds. Now, another variant of the same malware has been identified by Cyber ​​and is specifically targeting users in India and those using 18 Indian banks.

New Drinik Android Banking Trojan

A newer version of Drinik malware has been spotted that targets the user by sending an SMS with the APK file. It includes an app called iAssist. Once users have installed the app on their Android phone, it requests them to grant permission for certain actions. These include the ability to receive, read and send SMS, read call logs.
Once a user grants permission, the app has the opportunity to perform certain actions without the user being told about it. The app is capable of capturing navigation gestures, record screen and key presses.

This is how scam is done

When the app gets all the permissions, it opens a real Indian Income Tax website via webview instead of loading a phishing page, which was done earlier. While the site is genuine, the app uses screen recording along with keylogging functionality for the login credentials of the users. But, the story is not over yet. Once logged-in, a fake dialog box shows up on the screen, stating that the tax agency has assumed that the user is eligible for a refund of Rs 57,100 due to some wrong assumptions made earlier. The victim is then given an “Apply” button to get the refund.

Delete Paytm Account: How To Delete Your Paytm Account In Minutes
It redirects the user to a phishing page, which looks like an original Income Tax Department website. Here, people are asked to fill in their details, such as account number, credit card number, CVV and card PIN. Cyble revealed that the app also has a code for abusing the call screening service, which basically means it can reject incoming calls without the user’s knowledge.

How to avoid falling prey to Drinik and other Android viruses?

Avoid downloading any app through third party website or SMS. People should look for apps on Google Play Store or Apple’s App Store.
Avoid giving SMS and call log permissions to unknown apps. In such a situation, users need to be careful.
If you are getting any important link, SMS or email related to banking, then you should check it again by visiting the official website.
– The new version of Drinic relies on the Accessibility service, so users should ensure that they do not allow access to it on their Android phone.

- Advertisement -

- Advertisment -

- Advertisment -spot_imgspot_imgspot_img


Two Wheeler


Digit News