Subscribe
|
|
|
|
|
|
|
News

Android malware steals one-time passcodes

Thursday 14 January 2016 10:50 CET | News

One-time passcodes, a crucial defense for online banking applications, are being intercepted by a malware program for Android, according a research from Symantec.

The malware, dubbed Android.Bankosy, has been updated to intercept the codes, which are part of so-called two-factor authentication systems.

Many online banking applications require a login and password plus a time-sensitive code in order to gain access. The one-time passcode is sent over SMS but also can be delivered via an automated phone call.

Some banks have moved to call-based delivery of passcodes. In theory, that provides better security since SMS messages can be intercepted by some malware.

The one-time passcode is used with the victim’s login credentials, which the attackers have presumably already obtained.


Free Headlines in your E-mail

Every day we send out a free e-mail with the most important headlines of the last 24 hours.

Subscribe now

Keywords: online fraud, online security, cyber security, fraud prevention, Android, passcodes, malware, cybercrime
Categories: Fraud & Financial Crime
Companies:
Countries: World
This article is part of category

Fraud & Financial Crime

::: more





Industry Events

Free Headlines ::: subscribe now
RSS ::: follow ThePaypers via RSS ::: connect
LinkedIn ::: connect with ThePaypers on LinkedIn ::: connect
Twitter ::: follow ThePaypers on Twitter ::: follow
Facebook ::: like ThePaypers on Facebook ::: like