Password-stealing Malware Found in Google Play Store
IBM X-Force researchers recently found a number of apps on Gogle’s Play Store which carried the Trojan banking malware Anubis which steals login credentials for banking apps, e-wallets and payment cards.
The malware campaign was said to have been carried out by a cybercrime group that took the effort to make the malicious apps look legitimate, suggesting a significant investment of resources by the campaign operator.
Users are warned that Anubis masquerades as an app called “Google Protect” which asks the user for accessibility rights. The malware authors purposely used the name Google on the display to make users believe that the request is legitimate.