Android users across the UK have been issued with an urgent warning over a security threat that could end up stealing their bank details.
The latest threat was discovered by the security team at ThreatFabric and is using apps uploaded to the Google Play Store to infect phones with fraudulent Anatsa banking trojan.
Once installed on a device, the money-stealing bug can steal credentials which can be used to authorise users whey log into mobile banking.
Hackers can then gain control of someone’s account and access credentials, credit card details, bank balance and payment information as well as transfer funds with less likelihood of the card holder noticing.
An existing bug is wreaking havoc for Android users, the dreaded Anatsa posing as Google Play apps can wind up stealing your bank details
ThreatFabric explains: ‘Since transactions are initiated from the same device that targeted bank customers regularly use, it has been reported that it is very challenging for banking anti-fraud systems to detect it.’
Anatsa isn’t a new issue, the bug has been causing damage since 2020, but this new malware is now targeting Android users in the UK and USA as well as phone owners in Italy, Germany and France.
According to security researchers at the tech company who have been tracking the activity, the bug has over 30,000 installations via this method alone.
In March 2023, the threat actors launched a new campaign that led unaware victims to download Anatsa dropper apps from Google Play.
Threat Fabric says that
