Hackers Exploiting WhatsApp To Steal Bank Customers’ Credentials, Warns Cybersecurity Researchers
Cybersecurity researchers are warning about a dangerous new malware strain that targets banking customers by exploiting WhatsApp and SMS.
Dubbed “GhostBat RAT,” the malicious software masquerades as legitimate government-related apps, tricking users into downloading infected Android files from GitHub or compromised websites.
According to the team at Cyble , the malware campaign has resurged in India with alarming sophistication, using shortened URLs in WhatsApp messages and text alerts to deceive victims into believing they’re installing official transportation apps.
Once installed, GhostBat RAT deploys a phishing overlay that captures sensitive information including mobile banking credentials, UPI PINs, and account details. It also intercepts SMS messages containing banking-related keywords to siphon one-time passwords and two-factor authentication codes, giving attackers full access to victims’ financial accounts.
Researchers found that the malware communicates with a remote command-and-control server to exfiltrate stolen data in real time, while also granting attackers the ability to monitor user activity, send messages, and modify system settings.
Cyble says that the campaign leverages social engineering tactics to build trust and gain permissions that bypass Android’s default security safeguards.
The firm has urged users to remain vigilant, avoid downloading applications from unofficial links, and verify the authenticity of app publishers before installation. Security experts also recommend reviewing app permissions, updating Android systems regularly, and using reliable mobile antivirus tools.
“The GhostBat RAT campaign represents a sophisticated evolution of RTO-themed Android malware. It combines multi-stage dropper techniques, anti-analysis defenses, native code exploitation, and social engineering to compromise users.
By targeting both banking credentials and UPI authentication flows, the malware demonstrates an ability to extract financial information directly while evading traditional detection mechanisms.”
Generated Image: Midjourney
Disclaimer: The content of this article solely reflects the author's opinion and does not represent the platform in any capacity. This article is not intended to serve as a reference for making investment decisions.
You may also like
Nasdaq’s Move Toward Tokens Challenges the SEC’s Regulatory Stance
- Nasdaq submitted a proposal to tokenize stocks via digital tokens, aiming to streamline settlement and expand market access while navigating SEC regulatory scrutiny. - The World Federation of Exchanges warned tokenized equities could bypass safeguards, urging the SEC to enforce parity with traditional trading rules to protect market integrity. - Industry reactions are split: proponents highlight democratization and liquidity gains, while critics caution layer-2 tokenization risks diverting value from cor
Vitalik Buterin Supports ZKSync: Evaluating the Long-Term Investment Potential and Future Prospects of Ethereum Layer 2 Solutions
- Vitalik Buterin's endorsement of ZKSync's Atlas upgrade validates its 15,000 TPS scalability, signaling a shift in Ethereum's scaling priorities. - ZKSync's ZK Stack framework enhances cross-chain efficiency, attracting $15B in 2025 and a 50% ZK token surge post-endorsement. - ZKSync competes with Arbitrum ($16.63B TVL) and Optimism ($6B TVL) via cost efficiency and EVM compatibility, aiming to capture institutional capital. - Ethereum's post-Merge roadmap, including Proto-Danksharding, aligns with ZKSyn
Nasdaq's initiative to introduce tokenized stocks encounters regulatory resistance from the WFE
- Nasdaq submitted a tokenized stock proposal to the SEC, seeking regulatory approval while collaborating with agencies to ensure compliance. - The WFE warned that tokenized assets could weaken investor protections and create regulatory imbalances by bypassing traditional market rules. - Nasdaq partnered with Revolut to strengthen regtech capabilities, emphasizing innovation balanced with compliance frameworks during SEC review. - The SEC's "Innovation Exemption" framework aims to accelerate blockchain ado
The Xerox Campus located in Webster, NY: An Example of How Infrastructure Enhances Real Estate Value
- Webster , NY transformed the Xerox brownfield into a high-value industrial hub via infrastructure grants and public-private partnerships. - $9.8M FAST NY funding enabled shovel-ready upgrades, attracting advanced manufacturing and logistics firms to the 300-acre site. - Strategic anchors like the $650M fairlife dairy facility and NY Forward programs validate the model, boosting property values by 10.1% annually. - The success demonstrates how infrastructure-led redevelopment in post-industrial markets ca
Trending news
MoreCrypto prices
More
