Monday, January 11, 2010

Rogue Android Application Suspected in Smartphone Banking Attacks

http://www.firsttechcu.com/home/security/fraud/security_fraud.html

Dec 12 22, 2009

We recently learned that a fraudster developed a rogue Android Smartphone app. It creates a shell of mobile banking apps that tries to gain access to a consumer’s financial information.

Droid09 launched this phishing attack from the Android Marketplace and it’s since been removed. It’s called phishing because scammers go fishing for information about you or your financial account that may be used for identity theft.

Please note that this attack didn’t target First Tech accounts. Accessing your First Tech account from your phone’s web browser is completely secure.

If you did download the Droid09 app, please remove it from your phone and take it to your mobile provider to ensure it’s completely removed.

As a reminder, we don’t currently have an app for the Android phone.

---------------------------

According to
Mikko Hypponen (of F-Secure), the rogue Android developer was called "09Droid", not "Droid09".

More info, including a list of apps that were sold by 09Driod can be found on F-Secure's blog...
http://www.f-secure.com/weblog/archives/00001852.html

No comments:

Post a Comment