The Association of Banks in Singapore is warning of a new malware disguises itself as a WhatsApp update to illegally access mobile banking apps. Craig Young, security researcher at Tripwire have following comments on it.
“This is essentially an advanced phishing attack using social engineering to convince users to enter sensitive data in an untrusted context.
Android users within the UK and United States should remain largely unaffected by this especially if they do not allow app installation from outside of Google’s Play Store. Users who are most at risk are those looking to download apps from the less regulated third party markets which are very prevalent in some parts of the world.”
Tripwire is a leading provider of advanced threat, security and compliance solutions that enable enterprises, service providers and government agencies to confidently detect, prevent and respond to cybersecurity threats. Tripwire solutions are based on high-fidelity asset visibility and deep endpoint intelligence combined with business-context and enable security automation through enterprise integration. Tripwire’s portfolio of enterprise-class security solutions includes configuration and policy management, file integrity monitoring, vulnerability management and log intelligence.