We are talking about banking apps, in which users leave their personal data.
Specialist company PhishLabs Joshua Shilko (Joshua Shilko) found in the official catalogue Google Play Store of malicious banking apps that mimic the popular credit program companies and mobile payment services (their names are not disclosed).
These apps supposedly allow users to access account services directly from your mobile device, however, intercept the credentials as well as personal information of the victim and send data to the attackers. In total Shilko revealed 11 of these applications.
According to experts, the programs have a simple, but effective functionality. The application is able to replace the original login window for phishing, in which the user enters their credentials. Then this information is sent to attackers.
Next, on the screen of the mobile device displays a few more forms to enter additional information, including security questions. Eventually display the login window appears and the notification message about wrong login/password or some data and a request to retry again.
Judging by some signs, the authorship of these applications belong to the same person or group. this can speak to the fact that in the Google Play Store on the same day, were published in numerous applications with similar naming scheme, but aimed at a different company.
