Over a billion Google Play Store app downloads could be infected by malware

Shutterstock
(Image credit: Shutterstock / ImYanis)

Banking apps for the Android ecosystem have more than a billion downloads between them, and according to a new report from the mobile security platform Zimperium, all of these at risk from dangerous trojans.

The company analyzed more than 600 financial apps and 10 prolific banking trojan families targeting these apps, finding that the most targeted mobile banking application is the Spanish “BBVA Spain | Online Banking” app which has more than 10 million downloads. 

Apparently, of the 10 most prolific trojan malware out there, six are targeting this app.

Share your thoughts on Cybersecurity and get a free copy of the Hacker's Manual 2022end of this survey

Share your thoughts on Cybersecurity and get a free copy of the Hacker's Manual 2022. Help us find how businesses are preparing for the post-Covid world and the implications of these activities on their cybersecurity plans. Enter your email at the end of this survey to get the bookazine, worth $10.99/£10.99.

Mobile banking and crypto

In the United States, 121 financial apps, with more than 280 million downloads between them, are being targeted. The United Kingdom and Italy are the next most-targeted countries, it was said, with 55 and 43 apps targeted, respectively.

The report has also found that crooks aren’t that interested in “traditional” banking apps, as they prefer more modern technological solutions. That being said, apps that focus on mobile payments, or cryptocurrencies, are hugely popular. In fact, the top three mobile financial apps targeted by this type of malware manage alternative assets.

Teapot is the most active banking trojan of all, used against 410 applications, out of the 600 analyzed, while ExobotCompact.D, also known as Octo, was the oldest one, as it was originally discovered five years ago. 

“Not every trojan targeting mobile and banking apps is created equal – they’re disseminated differently, use different exploitation techniques, and vary in other degrees of reach and sophistication,” said Nico Chiaraviglio, VP of Security Research at Zimperium. “We’ve seen ad hoc reports of different banking trojans over the past few years, and anecdotally, people may have recognized that they’re increasing in scope and frequency.” 

Safeguarding your digital devices, with malware protection and firewall solutions, has never been this important.

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

Read more
Malware worm
Coordinated global mobile malware campaign targets banking apps and cryptocurrency platforms
A close-up photo of an iPhone, with the App Store icon prominent in the center of the image.
App stores are increasingly becoming a major security worry
mobile phone
Popular Android financial help app is actually dangerous malware
Android phone malware
Screen reading malware found in iOS app stores for first time - and it might steal your cryptocurrency
An iPhone sitting on a wooden table
Millions at risk as malicious PDF files designed to steal your data are flooding SMS inboxes - how to stay safe
 In this photo illustration a Google Play logo seen displayed on a smartphone.
Why is there so much spyware hidden in the Play Store?
Latest in Security
Data Breach
Thousands of healthcare records exposed online, including private patient information
China
Juniper patches security flaws which could have let hackers take over your router
Representational image depecting cybersecurity protection
GitLab has patched a host of worrying security issues
Ai tech, businessman show virtual graphic Global Internet connect Chatgpt Chat with AI, Artificial Intelligence.
AI agents can be hijacked to write and send phishing attacks
China
Volt Typhoon threat group had access to American utility networks for the best part of a year
Abstract image of cyber security in action.
MassJacker malware targets those looking for pirated software
Latest in News
Three iPhone 16 handsets on show
Apple could launch an iPhone 17 Ultra this year – but we've heard these rumors before
Super Mario Odyssey
ChatGPT is the ultimate gaming tool - here's 4 ways you can use AI to help with your next playthrough
Ray-Ban smart glasses with the Cpperni logo, an LED array, and a MacBook Air with M4 next to ecah other.
ICYMI: the week's 7 biggest tech stories from Twitter's massive outage to iRobot's impressive new Roombas
Brad Pitt looks over his right shoulder with 'F1' written behind him
Apple Original Films will take you behind-the-scenes of a racing cockpit in this new thrilling F1 movie trailer
AI writer
Coding AI tells developer to write it himself
Reacher looking down at another character from the Prime Video TV series Reacher
Reacher season 3 becomes Prime Video’s biggest returning show thanks to Hollywood’s biggest heavyweight