"Group-IB: 'GoldDigger' Banking Trojan Targets Vietnamese Organizations"

In August, Group-IB found GoldDigger, an Android Trojan, targeting over 50 financial organizations in Vietnam. Since June, when Group-IB's intelligence unit discovered more than ten fake websites spoofing Google Play Store pages, the Trojan has been active. GoldDigger aims to steal banking credentials. It uses the Accessibility Service to steal personal information and intercept SMS messages when installed and activated. The malware avoids detection by masquerading as a fake Android app, spoofing a Vietnamese government portal and an energy company in at least two variants. According to Group-IB's analysis, GoldDigger uses Virbox Protector, which enables the malware to avoid detection and complicates analysis. This article continues to discuss findings regarding the GoldDigger banking Trojan.

Dark Reading reports "Group-IB: 'GoldDigger' Banking Trojan Targets Vietnamese Organizations"

Submitted by grigby1