On 17 April (Monday) the strain, dubbed “BankBot”, was discovered in an application called “HappyTimes Videos” on Google’s Play Store. In addition, experts from Securify, a Dutch cybersecurity firm, recently found another infected app there, titled “Funny Videos 2017”.
The Trojan is able to pose as legitimate services, mostly banks and financial institutions. However, once launched on a victims’ device it can hijack financial details.
It’s a constant struggle when it comes to vetting apps on stores. On one hand automated scanners speed up the process, but once the process is understood, attackers can adapt their attacks to bypass controls.