Suche
Attention: New WhatsApp malware threatens bank customers in Germany!
Cybersecurity experts warn about “GhostBat RAT” malware that attacks bank customers via WhatsApp. Protect your data!
Attention: New WhatsApp malware threatens bank customers in Germany!
Cybersecurity experts warn of a new malware that poses a serious threat to bank customers. The malware, known as “GhostBat RAT,” specifically targets users who communicate via WhatsApp and SMS. According to reports from Daily Hodl The campaign in India has gained momentum and shows alarming development and sophistication.
The attackers disguise the malware as legitimate, government-related apps by offering fake downloads. Affected users are misled into downloading infected Android files from GitHub or compromised websites. They often believe they are installing official transportation apps, but in reality their privacy and security are being seriously compromised.
Methods of the attackers
GhostBat RAT uses shortened URLs in WhatsApp messages and text notifications to gain victims' trust. Once installed, the malware creates a phishing overlay interface that grabs sensitive information such as mobile banking credentials, UPI PINs and account details. It can also intercept SMS messages containing bank-related keywords to steal one-time passwords and two-factor authentication verification codes.
This gives attackers full access to victims' financial accounts. GhostBat RAT communicates with an external command and control server to exfiltrate the stolen data in real time. This method allows perpetrators to monitor user behavior, send messages and change system settings.
Protective measures and recommendations
To protect themselves from this threat, users are urged not to download applications from unofficial links and to check app publishers. Recommended measures include checking app permissions regularly, updating Android system, and using reliable mobile antivirus tools.
The GhostBat RAT campaign represents a sophisticated evolution of RTO-themed Android malware. It combines techniques such as multi-stage dropper methods, analysis defenses, native code exploitation and social engineering techniques to bypass security measures and build trust.
Given this development, it is imperative that bank customers remain vigilant and take appropriate security precautions to avoid jeopardizing their financial security.