Sophisticated WhatsApp Scam Targets Bank Users: Union Bank Aadhaar Update APK Exposes New Cyber Threat

There's an increase in concern over fraudulent APKs, particularly those claiming to be from a reputed bank that offers Aadhaar update services. One such recent incident involving a so-called 'Union Bank Aadhar Update' APK is being distributed via WhatsApp with the potential to harvest user information and steal money.

Unlike most common schemes that merely redirect SMS messages to get access to One-Time Passwords (OTPs), this operation showcased a higher level of complexity, and most users might end up giving their personal data to scammers, leading to financial losses.

The fraudulent application lured victims with a counterfeit bank interface that looked very legit, prompting them to input their date of birth and bank account credentials. These details were then transmitted to an external server.

Subsequently, the command and control (C&C) center dispatched a message, initiating the SMS forwarding mechanism. This setup allowed attackers to orchestrate password reset attempts, capturing the OTPs sent to the victim's phone to gain unauthorized access.

The discovery of this advanced scam was shared by a user identified only as Rithwik Jayasimha, who received the malware-laden APK via a message on WhatsApp. The APK, deceitfully named 'Union Bank Aadhar Update,' aimed to exploit unsuspecting individuals.

Upon closer inspection using jadx, a tool for decompiling Android apps, Jayasimha found out that this operation was far from a simple SMS forwarding scam. The methodology employed by the attackers demonstrated a significant leap in technical ingenuity compared to other SMS-stealing frauds encountered in the past.

To illustrate the complexity and novelty of this scam, a comparison was drawn between it and another SMS-stealing scheme received in July.

In essence, the emergence of such sophisticated fraudulent APKs, particularly those masquerading as Aadhaar update tools, underscores a worrying trend. These schemes not only compromise personal information by masquerading as legitimate services but also employ advanced tactics to bypass security measures.

As these threats continue to evolve, it's crucial for individuals to exercise caution, particularly when downloading applications and responding to unsolicited messages claiming to offer banking or identification update services.

Best Mobiles in India

Story first published: Thursday, November 28, 2024, 17:57 [IST]