Android Trojan Infected 10 Million Devices
Beware! This Android Trojan Stole Millions of Dollars from Over 10 Million Users
Beware! This Android Trojan Stole Millions of Dollars from Over 10 Million Users, Zimperium zLabs dubbed the malicious trojan "GriftHorse."
Like other banking trojans, GriftHorse does not exploit flaws in the Android operating system, but rather socially engineers users into subscribing their phone numbers to premium SMS services upon downloading the apps. Following responsible disclosure to Google, the apps have been purged from the Play Store. But they continue to be available on untrusted third-party app repositories, once again underscoring the risks associated with sideloading arbitrary applications and how they can emerge as an intrusion route for malware.