Wednesday, January 13, 2016

New Android malware can ‘dribble’ authentication in two … – SAPO Tek

The warning is made by Symantec:. a new malware type for the Android operating system can intercept the temporary codes that are sent to the user’s smartphone in the authentication process in two steps

In the case of Android.Bankosy malware, there is an interception of calls that are made to deliver these codes. The software is designed to mainly attack the endorsements in two steps of banking services

But to better understand what happens, we use a more familiar example. The WhatsApp. When the user authentication on the platform, an SMS is sent with a unique code validation. Alternatively the user can choose to receive an automatic call in which is dictated temporary code.

What Android.Bankosy does, according to PC World, is forward the call to the cibercrimonoso, gaining access to this extra safety factor. The program can also put the smartphone into silence so that the user does not notice the receipt of the call. Attacks occur mainly in the Asia-Pacific region.

The publication also notes that there is already malicious programs that have a similar behavior, but in relation to the codes sent by SMS.

LikeTweet

No comments:

Post a Comment