Over 1,000 malicious apps have been used in a campaign targeting Android users in India. This large-scale operation has compromised the personal and financial data of tens of thousands of users, highlighting the growing threat of mobile malware.
Research labs of the mobile security company Zimperium discovered the campaign known as ‘FatBoyPanel’ on February 5, 2025, involving nearly 900 malware samples primarily targeting users of Indian banks. These malicious apps, distributed through platforms like WhatsApp, masquerade as legitimate government or banking applications employing sophisticated techniques to intercept SMS messages, including one-time passwords (OTPs), facilitating unauthorized transactions. Once installed, the apps deceive users into disclosing sensitive information such as Aadhar and PAN card details, credit and debit card information, and ATM PINs.
Researchers have identified shared code structures and user interface elements across the apps, suggesting a coordinated effort by a single threat actor. The campaign has exposed sensitive data of approximately 50,000 users, including SMS messages, bank details, and government-issued identification details.
In response to this alarming threat, Indian authorities and the mobile security firm has compiled a table containing the MITRE Tactics and Techniques as references to better understand the impact of this malware. Efforts are also underway to remove the malicious apps from distribution platforms and enhance security measures to prevent similar incidents in the future.
#CyTech #CyTechNewsRoom #Cybersecurity #CISO #CISOWorkplace™ #EDR #CIM #Malware #DataBreach #FatBoyPanel
Leave a Reply