Online and Digital Identification, Securing Web 2.0, PKI and Digital Certificates

Zeus trojan infiltrates Android banking passwords

Wednesday, July 13, 2011

Google Android smartphone users now have to watch for a new trojan that steals one-time banking passwords.

SC Magazine reports the Zeus trojan is a version of Zitmo, a mobile trojan application, that’s designed to steal mobile transaction authentication numbers (mTANs) in relation to banking transactions.

The malware disguised itself as the banking security app Rapport, made by Trusteer. If installed, the software captured incoming SMS messages and forwarded them to a remote server, where they could be picked up by hackers.

Trusteer discovered the spread of the malware in late May and early June and have taken the supporting servers offline.

While mTANs are used mostly by European banks as a second layer of security, the spread of this variant shows that attackers are attempting to break into dual-factor authentication, which could pose problems for other types of mobile banking platforms.

Read more here[end] 

Related Articles
Beta testers praise face login app

Beta testers for Sensible Vision’s new FastAccess Anywhere facial recognition password replacement app are praising its speed, accuracy and reliability.

FastAccess Anywhere is available on both iOS and Android and replaces traditional passwords with a secure combination of the user’s face and a gesture. This enables the user to replace login password information and quickly log in to devices, applications and Web sites. Users can also synchronize the app settings between devices.

read more »
FNB launches GPS-based mobile payments

South Africa’s First National Bank (FNB) has added a new feature to its mobile app that enables users to make peer-to-peer payments via GPS technology.

read more »
HSBC starts roll out of contactless bank cards

HSBC announced that it will begin the conversion to contactless technology this month, replacing all customer banking debit cards, according to ThinkMoney.com.

The bank will start to roll out the new contactless cards to existing customers whose debit cards are due to expire this month and then continue the process as cards expire. Customers who don’t want a contactless card can opt out by contacting their bank before their current card expires.

read more »
CSC, Daon partner for banking multifactor authentication product

CSC has partnered with identity authentication technology and services provider Daon to produce a biometric multifactor authentication service for the banking industry. The product, called ConfidentID Mobile, provides in and out-of-band identity authentication for transactions in multiple channels, including online and mobile.

read more »

Comments
Be first to comment...
Comment on this article

Your full name and URL will be displayed with your comment.

Your email is not shown or shared, and is used only for your Gravatar image.




characters left.
Copyright © 2012, AVISIAN, Inc. All rights reserved.