Android security: Password-stealing malware sneaks in Google Play store in bogus apps

A cyber crime group has sneaked apps onto the official Google Play Store which then serve up Trojan banking malware to Android users, security researchers have revealed. The campaign delivered Anubis malware designed steal to login credentials for banking apps, e-wallets and payment cards. The payload was hidden in applications which claimed to offer various legitimate services.

The Android malware campaign has been¬†unearthed and detailed by researchers at IBM X-Force, who suggest the effort put into making the applications look legitimate indicates “a large investment of resources on the part of the campaign’s operator”.

Read more about the campaign that involved at least ten Android apps delivering banking Trojan malware to victims, on ZDNet.