It was going to happen sooner or later…
Trusteer reports that an Android variant of Spitmo (SpyEye for mobile) has been discovered.
The methodology sounds familiar for those familiar with ZeuS Mitmo and SpyEye Spitmo: infected computers inject a message into targeted netbanks prompting their customers to install software on their phones. Once Spitmo is installed, the SpyEye attacker is able to monitor incoming SMS and to steal MTAN authentication messages.
More from Trusteer: First SpyEye Attack on Android Mobile Platform now in the Wild
Leave a reply