Barclays, HSBC, PayPal and several other banking Apps are all vulnerable to new Malware Eventbot.

New mobile-based Malware has been discovered, capable of cracking Android access to steal user data from banking applications and read SMS messages, allowing the Trojan to side-step two-factor authentication. The Eventbot trojan was discovered by Cybereason Nocturnus, who found it targeting financial banking Apps in the UK. Over 200 banking and money transfer financial applications from HSBC, Santander, Barclays, CapitalOne, PayPal Business, Revolut, UniCredit and TransferWise are open to Eventbot’s attacks. EventBot is particularly interesting because it is in such early stages. This could become the next big mobile malware. It’s under constant improvement, abuses a critical operating system feature, and targets financial applications.

Looks like Mobile Banking is not as secure as we all hoped it was…