With the increasing prevalence of smartphone technology, the system becomes more vulnerable to cyber attacks, especially in terms of the security of user financial data. The tricks used by hackers vary, but there always seems to be a way for them to hack into users’ bank accounts.
One of the latest cases actually didn’t use any new tricks. Hackers used an old trick from the hacking book, namely using a phishing site. This time, the impact was felt by the Android smartphone user community with the infiltration of a Trojan malware called Nexus.
Cybercriminals use Nexus malware to intercept users’ banking data and potentially take over victims’ bank accounts. This malware is like a Trojan, which we know pretends to be another application and once we install it, the script from the malware will run according to the intruder’s will.
According to the Cyble website, Nexus is spread through a popular YouTube Mod application download site called YouTube Vanced. However, if you’re familiar with the world of app modding, you probably already know that this app has been killed by its creator because it received a love letter from Google.
Nexus works by misusing Android’s accessibility service settings and overlaying a fake login screen over a legitimate banking application. When the user logs in, they unknowingly enter their data on the fake overlay. Nexus also works by installing a keylogger to intercept data.
Although still in the early stages of development, Nexus has been targeted to attack 450 banking and cryptocurrency applications. Despite this, the Nexus malware creators have some rules that prohibit its use in certain countries.
Cyber vulnerabilities are sometimes difficult to control. Users should have enough knowledge to protect themselves from incidents like data breaches. Therefore, cyber security education is crucial and should be included in school curriculum.