A new Android banking trojan named
GoldDigger has been found targeting several financial applications with an aim to siphon victims' funds and backdoor infected devices.
"The malware targets more than 50 Vietnamese banking, e-wallet and crypto wallet applications," Group-IB
said. "There are indications that this threat might be poised to extend its reach across the wider APAC region and to Spanish-speaking countries."
The malware was
first detected by the Singapore-headquartered company in August 2023, although there is evidence to suggest that it has been active since June 2023.
While the exact scale of the infections is currently not known, the malicious apps have been found to impersonate a Vietnamese government portal and an energy company to request intrusive permissions to meet its data-gathering goals.
