The Google Play store once again has been invaded with apps carrying BankBot Android banking malware that uses fake overlay screens to fool banking app users into giving away their credentials. One such malicious was reportedly downloaded between 5,000 and 10,000 times before it and the others were removed by Google.
According to a blog post published today by Trend Micro, the latest variant of the mobile malware has added 10 apps from United Arab Emirates banks to its precedessors’ target list. Altogether, the malware now impersonates 160 apps from banks in 27 different countries.
Of the five malicious apps Trend Micro researchers recently uncovered, five were found in the Google store disguised as utility apps. Two were removed immediately, but two others were downloaded by some users, the blog post continues.
Recently created and modified from leaked banking malware source code, BankBot is also capable of hijacking and intercepting SMS messages. Just last month, researchers from SfyLabs and Zscaler announced that they found BankBot smuggled into Google Play in the form of apps called Earn Real Money Gift cards and Bubble Shooter Wild Life.