SBI, HDFC Bank and 230 other banking apps under malware attack! Here’s how to stay safe

An associate degreedroid malware has been targeting over 232 banking apps together with HDFC Bank and ICICI Bank, fast Heal Security Labs has detected. Here's the list of all Indian banking apps and tips to remain safe.

An associate degreedroid malware has been targeting over 232 banking apps together with SBI, HDFC Bank and ICICI Bank, fast Heal Security Labs has detected. per the IT resolution supplier, associate degree automaton Banking Trojan has been targeting over 232 banking apps together with those offered by Indian banks.
The banking malware is intended for stealing login credentials, hijacking SMSs, uploading contact lists and SMSs on a malicious server, displaying associate degree overlay screen (to capture details) on high of legitimate apps and winding up alternative such malicious activities.
The malware is understood as automaton.banker.A2f8a (Previously detected as automaton.banker.A9480), per fast Heal Security Labs. The new malware is being distributed through a pretend Flash Player app on third-party stores. "This isn't stunning on condition that Adobe Flash is one in every of the foremost cosmopolitan merchandise on the net. due to its quality and world install base, it's usually targeted by attackers," the IT resolution company aforementioned in an exceedingly statement.
The company has aforementioned that the malware throws continuous pop-ups, albeit body rights square measure declined. "After putting in the malicious app, it'll raise the user to activate body rights. And albeit the user denies the request or kills the method, the app can keep throwing continuous pop-ups till the user activates the admin privilege. Once this is often done, the malicious app hides its icon presently once the user faucets thereon," the corporate aforementioned.
If anyone of the targeted apps is found on the infected device, the app shows a pretend notification on behalf of the targeted banking app. If the user clicks on the notification, they're shown a pretend login screen to steal the user’s confidential data like internet banking login ID and positive identification.
List of targeted Indian banking apps:

1. axis.mobile (Axis Mobile)
2. snapwork.hdfc (HDFC Bank MobileBanking)
3. sbi.SBIFreedomPlus (SBI anyplace Personal)
4. hdfcquickbank (HDFC Bank MobileBanking LITE)
5. csam.icici.bank.imobile (iMobile by ICICI Bank)
6. snapwork.IDBI (IDBI Bank GO Mobile+)
7. idbibank.abhay_card (Abhay by IDBI Bank Ltd)
8. com.idbi (IDBI Bank GO Mobile)
9. idbi.mpassbook (IDBI Bank mPassbook)
10. co.bankofbaroda.mpassbook (Baroda mPassbook)
11. unionbank.ecommerce.mobile.android (Union Bank Mobile Banking)
12. unionbank.ecommerce.mobile.commercial.legacy (Union Bank industrial shoppers )
    How to keep safe?
13. Avoid downloading apps from third-party app stores or links provided in SMSs or emails.
14. perpetually keep ‘Unknown Sources’ disabled. sanctionative this feature permits installation of apps from unknown sources.
15. most significantly, verify app permissions before putting in any app even from official stores like Google Play.
16. Install a reliable mobile security app which will find and block pretend and malicious apps before they'll infect your device.
17. perpetually keep your device OS and mobile security app up-to-date.