With the number of cases of people infected with COVID-19 increasing worldwide, the growth of Internet attacks that take advantage of the new Coronavirus has been evident. This time, Kaspersky warns of a banking trojan that "adapted" to the new pandemic to access the banking data of Android users via SMS. In recent times the targets have been mostly individuals residing in Spain, but it seems that hackers are planning to attack other countries.
Designated by Ginp, the banking trojan strategy makes it possible for fake text messages to appear in the SMS inbox of Android phones. As soon as the trojan is transferred to the mobile phone, users can receive an order from the hacker to open a web page called "Coronavirus Finder", which ensures that people close to them are infected with the virus.
But how is it possible to know where these people are? Then the victims are asked to pay 75 cents to be revealed and, if they agree, they are immediately transferred to a payment page. At this stage, users will have to enter their credit card details, but they will not be charged that amount, nor will the victim receive any information about the allegedly infected persons. Instead, the credit card data ends up in the hands of hackers.
How to protect yourself?
Ginp is a trojan that has evolved rapidly since it first appeared, acquiring new capabilities over time. Although in recent times the targets have been mostly Spaniards, who account for 83% of the victims, it seems that hackers are planning to attack other countries.
In a statement, Alexander Eremin, a security expert at Kaspersky, said: "This is the first time that we have seen a banking trojan take advantage of the pandemic." "alarming, especially because Ginp is a very effective trojan", he reinforces.
As for advice, the expert says that Android users should be particularly attentive at this point. "Pop-ups, unknown web pages and spontaneous messages about the new Coronavirus must always be viewed with skepticism," he says.
Cyber ??attacks that take advantage of COVID-19 have been a reality worldwide
Since the new outbreak of COVID-19 emerged, the Internet and its users have also been "infected" with attacks. At a time when even the World Health Organization itself was one of the attacks target of attack, the Judiciary Police and the National Cybersecurity Center detected in mid-March in the country a new wave of fraudulent schemes. In this case, users received an SMS or email asking for help with a campaign to purchase medical supplies. At European level, online fraud has also been detected, with Europol eliminating 2,500 links in one week.