Share this article
Latest news
With KB5043178 to Release Preview Channel, Microsoft advises Windows 11 users to plug in when the battery is low
Copilot in Outlook will generate personalized themes for you to customize the app
Microsoft will raise the price of its 365 Suite to include AI capabilities
Death Stranding Director’s Cut is now Xbox X|S at a huge discount
Outlook will let users create custom account icons so they can tell their accounts apart easier
Anatsa banking malware is targeting Europeans via Google Play
Threat actors are using commonly installed applications to target Android devices
2 min. read
Published onFebruary 21, 2024
published onFebruary 21, 2024
Share this article
Read our disclosure page to find out how can you help Windows Report sustain the editorial teamRead more
Cybercriminals target Europeans by infecting their Android devices with the Anatsa banking trojan. Unfortunately, if you are not careful, you might download it directly from the Google Play. After all, the malware hides in common apps. As a result, it has more than 150,000 downloads.
By the way, if you are from one of the following countries: UK, Germany, Spain, Slovakia, Slovenia, and the Czech Republic, your chances of getting the malware are higher.
What is Anatsa?
The Anatsa banking trojan is a malware that steals your financial data. In addition, you can get it by downloading apps from Google Play. Thus, some of your devices might be at a higher risk. It mostly operates as a dropper malware.
In some cases the Anatsa banking trojan dropper works like a normal application. For example, if you get the phone cleaner, you might have a few options to delete files or to hibernate battery draining apps. Unfortunately, by pressing on them, you will allow the malware to infect your phone. Below, you can find some removed apps.
To protect yourself from the Anatsa banking trojan, you should always check the developer of the application you are trying to get. Also, verify the reviews, especially the negative ones. In addition, always check for companies with a good reputation. On top of that, check the list of permissions new apps use and verify anything suspicious on the internet. After all, there is no point in giving a voice recording app access to your photos.
In a nutshell, there are many ways in which threat actors can use the Anatsa banking trojan. Thus, you should always be extra cautious when you install new apps from Google Play or other stores. Also, keep in mind to always check the permissions required by apps. In addition, by reporting the suspicious applications, you will help Google remove them.
Unfortunately, there are various malware affecting devices, such asTicTacToe,DarkMe,Akira RansomwareandOv3r_Stealer. Also, check the following article to learn more about theAnatsa banking trojanas reported byBleepingComputer.
What are your thoughts? Did you install any of the applications mentioned? Let us know in the comments.
More about the topics:Google,Google services
Sebastian Filipoiu
Sebastian is a content writer with a desire to learn everything new about AI and gaming. So, he spends his time writing prompts on various LLMs to understand them better. Additionally, Sebastian has experience fixing performance-related problems in video games and knows his way around Windows. Also, he is interested in anything related to quantum technology and becomes a research freak when he wants to learn more.
User forum
0 messages
Sort by:LatestOldestMost Votes
Comment*
Name*
Email*
Commenting as.Not you?
Save information for future comments
Comment
Δ
Sebastian Filipoiu
Sebastian is a content writer with a desire to learn everything new about AI and gaming.
