Experts recommend users stay cautious by installing apps solely from the Google Play Store, enabling Google Play Protect, using reliable security apps, and carefully reviewing app permissions to strengthen defences against potential malware threats
Cybersecurity experts have raised an alarm over a new malware, FatBoyPanel, that is targeting Android users across India. Spread mainly through counterfeit banking apps circulated via WhatsApp, this sophisticated malware poses a serious risk to users’ bank accounts, with over 25 million devices estimated to be compromised.
WhatsApp calls serve as the entry point for malware
In a notable incident, a dairy businessman from Dharashiv fell victim to the scam after receiving a WhatsApp call from an individual posing as a bank representative. The caller warned that his bank account would be suspended unless immediate updates were made. Trusting the urgency of the situation, the businessman downloaded an app sent through WhatsApp. Within minutes of installation, unauthorized transactions drained his account, highlighting the real-world danger of FatBoyPanel.
Investigations reveal that FatBoyPanel disguises itself within seemingly legitimate apps. Once installed, the malware removes its app icon, rendering itself invisible to the user. It then disables Google Play Protect, allowing it to operate undetected while intercepting SMS messages and one-time passwords (OTPs) to facilitate fraudulent transactions.
An intricately orchestrated cyber attack
Security research firm Zimperium, which uncovered FatBoyPanel, describes it as a mobile-first banking trojan that is far more advanced than previous threats. It has been identified in nearly 900 malicious APK files, all designed to bypass traditional security measures. By managing multiple versions of itself from a centralized control system, FatBoyPanel is able to scale its attacks rapidly, making containment efforts significantly harder.
According to Zimperium's findings, the malware has already harvested data from millions of devices and intercepted over 150,000 messages. Its ability to evolve and adapt has made detection extremely challenging for conventional mobile security tools.
How to safeguard against the surge in malware
Experts urge users to remain vigilant and adopt strict cybersecurity practices. To reduce the risk of infection, users should avoid downloading apps from unofficial sources and only install applications from the Google Play Store. Keeping Google Play Protect enabled, installing reputable mobile security apps, and reviewing app permissions can provide an additional layer of defense.
Furthermore, cybersecurity specialists recommend that financial institutions shift away from SMS-based OTPs toward more secure authentication methods. Until such systemic changes are widely implemented, personal vigilance remains the strongest shield against emerging mobile threats like FatBoyPanel.
Also Read:Google Play Store developing feature that can automatically open apps after installation
See What’s Next in Tech With the Fast Forward Newsletter
Tweets From @varindiamag
Nothing to see here - yet
When they Tweet, their Tweets will show up here.
