Create Profile

Creating your profile will enable you to submit photos and stories to get published on News24.

Please provide a username for your profile page:

This username must be unique, cannot be edited and will be used in the URL to your profile page across the entire 24.com network.

Facebook Sign-In

Hi News addict,

Join the News24 Community to be involved in breaking the news.

Log in with Facebook to comment and personalise news, weather and listings.


Over 30 financial institutions defrauded by phone apps

22 July 2014, 18:29

San Francisco - More than 30 financial institutions in six countries have been defrauded by sophisticated criminal software that convinces bank customers to install rogue smartphone programs, a major security company reported on Tuesday.

Though many of the elements of the malicious software, including the interception of one-time passwords sent to phones, have been used elsewhere, the latest criminal campaign is unusual in that it combines many different techniques and leaves few traces.

Researchers at Trend Micro Inc, which dubbed the campaign Emmental after the Swiss cheese, said they were working with European police and major banks on the continent that were early victims. Banks in Austria, Sweden, Switzerland and Japan have all been hit, with damages somewhere in the millions of dollars, said Trend Micro Chief Cybersecurity Officer Tom Kellermann.

Kellermann said that some of the attackers were in Romania but that the leader spoke Russian and could be based there.

The least sophisticated part of the gang's work so far appears to be in the delivery of the software, according to a report by Trend Micro researchers. Emails that appear to be from major retailers come with attachments that, when opened, prompt the user to download a malicious attachment of an unusual type, called a control panel item.

If users do not click again, they are safe. If they do, the software goes to work and hides itself out of view of most antivirus protection.

When an infected user later tries to visit the website of one of the targeted banks, the software redirects them to a fake site, which asks for login details and then prompts the user to download a smartphone app.

That app later intercepts the one-time passwords, giving the gang both that data as well as the login information, enough to clean out an account.

"This shows the continuing escalation, automation and blending of attacks," Kellermann said.

- Reuters


Read News24’s Comments Policy

Comment on this story
Comments have been closed for this article.

Read more from our Users

Submitted by
William Korir
ODM kicks 6 MPs out of Parliament...

ODM has kicked 6 rebel members out of house committees. Read more...

Submitted by
William Korir
Karua now headed to Jubilee?

Is Martha Karua now headed to the Jubilee Coalition? Read more...

Submitted by
William Korir
Kenneth defends move to support U...

Peter Kenneth says that moving to support President Uhuru Kenyatta and the Jubilee Party is his democratic choice. Read more...

Submitted by
S Mbinya
How to keep her interested

It is not only men who lose interest in relationships. Read more...

Submitted by
S Mbinya
What to do after breakup

Your life does not end after breakup. Here are tips to move on: Read more...

Submitted by
S Mbinya
Rare gift for President Uhuru Ken...

Young Jubilee supporters have a rare surprise gift for the President. Read more...