New NGate Android malware uses NFC chip to steal credit card data
A new Android malware, NGate, exploits NFC technology to steal credit card data and PINs through social engineering. Users are advised to disable NFC and verify app sources for security.
Read original article
A new Android malware called NGate has emerged, capable of stealing credit card data through the near-field communication (NFC) chip. This malware allows attackers to emulate victims' cards, enabling unauthorized payments and cash withdrawals from ATMs. Active since November 2023, NGate is linked to a campaign that exploits progressive web apps (PWAs) and advanced WebAPKs to deceive users into providing banking credentials. The attack typically begins with malicious texts or calls, prompting victims to install a malicious PWA disguised as a security update. Once installed, NGate utilizes an open-source component named 'NFCGate' to capture NFC data from nearby payment cards and relay it to the attacker. The malware can also clone NFC access cards and tokens. To obtain the card's PIN, attackers employ social engineering tactics, posing as bank employees and convincing victims to verify their card details through the malware interface. The Czech police have already apprehended one individual involved in these withdrawals, highlighting the growing threat to Android users. To mitigate risks, users are advised to disable NFC when not in use, scrutinize app permissions, and only install bank apps from official sources.
- NGate malware exploits NFC technology to steal credit card data.
- Attackers use social engineering to obtain victims' PIN codes.
- The malware is linked to a campaign utilizing PWAs and WebAPKs.
- Users are advised to disable NFC and verify app sources to enhance security.
- Czech police have arrested one suspect involved in the cash withdrawal scheme.
Related
Mac users served info-stealer malware through Google ads
Mac users targeted by info-stealer malware via Google ads promoting fake Arc browser for Mac. Malware sends data to Poseidon info stealer control panel, extracting wallets and passwords. Google disclaims responsibility. Users urged caution.
Criminal gangs who 'shoulder-surf' pin numbers steal '20 smartphones a day'
Criminal gangs exploit pin numbers through "shoulder-surfing" to steal smartphones for financial app access. Mobile banking fraud rises by 62%, urging public awareness and protective measures against increasing threats.
Mysterious family of malware hid in Google Play for years
A family of Android malware named Mandrake has been found in Google Play, evading detection for years. It steals credentials and executes malicious applications, highlighting challenges in malware detection.
Developers can soon offer in‑app NFC transactions using the Secure Element
iOS 18.1 will enable in-app NFC transactions using the Secure Element, allowing various applications while prioritizing user security. Developers must comply with agreements and regulations, initially available in select countries.
New Phishing Technique Bypasses Security on iOS and Android to Steal Bank Creds
A new phishing technique targets iOS and Android users via PWAs and WebAPKs, mimicking banking software to steal credentials. Attacks focus on users in the Czech Republic, Hungary, and Georgia.
2 commentshttps://bugs.chromium.org/p/chromium/issues/detail?id=124358...
> WebAPKs are usually very small in size, are installed straight from a browser page, do not appear under '/data/app' like standard Android apps, and show atypically limited information under Settings > Apps.
Yeah, this is not something I could tell my elderly relatives to watch out for. If Android is giving untrusted web apps full access to your device’s hardware without adequately warning you, that’s a security vulnerability.
Related
Mac users served info-stealer malware through Google ads
Mac users targeted by info-stealer malware via Google ads promoting fake Arc browser for Mac. Malware sends data to Poseidon info stealer control panel, extracting wallets and passwords. Google disclaims responsibility. Users urged caution.
Criminal gangs who 'shoulder-surf' pin numbers steal '20 smartphones a day'
Criminal gangs exploit pin numbers through "shoulder-surfing" to steal smartphones for financial app access. Mobile banking fraud rises by 62%, urging public awareness and protective measures against increasing threats.
Mysterious family of malware hid in Google Play for years
A family of Android malware named Mandrake has been found in Google Play, evading detection for years. It steals credentials and executes malicious applications, highlighting challenges in malware detection.
Developers can soon offer in‑app NFC transactions using the Secure Element
iOS 18.1 will enable in-app NFC transactions using the Secure Element, allowing various applications while prioritizing user security. Developers must comply with agreements and regulations, initially available in select countries.
New Phishing Technique Bypasses Security on iOS and Android to Steal Bank Creds
A new phishing technique targets iOS and Android users via PWAs and WebAPKs, mimicking banking software to steal credentials. Attacks focus on users in the Czech Republic, Hungary, and Georgia.