ngCERT - Nigerian Computer Emergency Response Team-ALERT AND WARNING UNIT
Security Advisory Vulnerability

Severity: High

SlemBunk Malware Targets Users of Worldwide Banking Apps


SlemBunk Malware Targets Users of Worldwide Banking Apps
Probability: High

Advisory ID: ngCERT-2015-0088
Version: 1.00
Probability: high
CVE ID:
Damage:

high

Publication Date: [21-Dec-2015
Affected Plateform(s): Android Operating System

Summary:

FireEye mobile researchers recently identified a series of Android trojan apps that are designed to imitate the legitimate apps of 33 financial management institutions and service providers across the globe
Consequences:

Bank Account Compromise

Theft of Personal Data

Description:

no instances of SlemBunk have been observed on Google Play, so users will only get infected if the malware is sideloaded or downloaded from a malicious website. Newer versions of SlemBunk were observed being distributed via porn websites.

Users who visit these sites are incessantly prompted to download an Adobe Flash update to view the porn, and doing so downloads the malware. While financial gain is the primary goal of this malware, SlemBunk is also interested in user data. This is reflected by its attempt to hijack the login credentials of high profile Android applications, including popular social media apps, utility apps instant messaging apps.

Solution:

Do not install apps outside the official app store.

Keep Android devices updated. (Upgrading to the latest version of OS will provide some security, but it does not guarantee that you will remain protected.)

Employ trusted Mobile Antivirus

Hyperlinks:

http://www.fireeye.com/blog/threat-research/2015/12/slembunk_an_evolvin.html
https://cert.gov.ng


image
Security Alert

& Advisory

Read More image
image
We Love to

Hear From You

Send Your Enquiry Here image
Join Our Newsletter