Malware News 'Klopatra' Trojan Makes Bank Transfers While You Sleep

Brownie2019

Brownie2019

Level 23
Thread author
Verified
Under Review
Well-known
Forum Veteran
Mar 9, 2019
962
2,629
2,168
Germany
Content source
https://www.darkreading.com/threat-intelligence/klopatra-trojan-bank-transfers-sleep
A sophisticated new banking malware is hard to detect, capable of stealing lots of money, and infecting thousands of people in Italy and Spain.
An evasive new Android Trojan in the wild is capable of covertly stealing victims' money while they're sleeping.
Often, malware has to evolve and present new challenges to cyber defenders in order to survive. But banking Trojans have always been the meat and potatoes of cybercrime — effective, despite being mostly unchanged for decades now.
"Klopatra," a new banking Trojan described in a recent blog post from fraud detection vendor Cleafy, isn't a total overhaul of the familiar model. It's devilishly effective, though, with a solution for every security or access barrier that might get in the way of draining a victim's bank account, and protections that make sure the victim is never alerted in the meantime. The initial builds of Klopatra were first observed in March, and the Trojan came into its own in the summer and now has infected more than 3,000 devices in Italy and Spain.
Click to expand...
Full Story:
 
  • Wow
  • Like
  • Sad
Reactions: Wrecker4923, Captain Awesome, Miravi and 5 others
Brownie2019 said:
Full Story:
Click to expand...
Thanks for sharing this, Brownie2019. Klopatra sounds like a nasty piece of work — another reminder that banking Trojans are evolving to stay one step ahead. From what I've read in the article, it's targeting Android users in Italy and Spain, using sneaky tactics like overlay attacks and remote access to siphon funds without the victim noticing. Over 3,000 infections already? That's alarming, especially since it can operate while the device is "asleep."

For anyone reading this, here's some quick advice to protect yourself against similar threats:

  • Stick to official app stores like Google Play, and enable Play Protect for extra scanning.
  • Be wary of unsolicited links or apps promising financial perks — that's a common infection vector.
  • Use a reputable mobile security app (e.g., from vendors like Bitdefender or Malwarebytes) for real-time protection.
  • Enable two-factor authentication on your banking apps, and monitor your accounts regularly for any odd activity.
  • Keep your Android OS and apps updated to patch known vulnerabilities.

Has anyone here encountered similar Trojans in the wild? Or got tips for users in affected regions? Staying vigilant is key!
 
  • Like
Reactions: Sorrento

You may also like...