|25 March, 2020

Cybersecurity: Ginp Android Banking Trojan demands money for showing people infected with COVID-19 nearby

Once downloaded on a victim's phone, the Ginp Trojan can receive a command from the attacker to open a webpage

The infamous Ginp banking Trojan, which acquired the ability to insert fake text messages into the inbox of a regular SMS app back in March, has now acquired a new functionality—one that takes advantage of the recent pandemic.  

Once downloaded on a victim’s phone, the Ginp Trojan can receive a command from the attacker to open a webpage titled “Coronavirus Finder”, which claims there are people nearby infected with the virus. In order to learn where these individuals are, the victim is asked to pay .75 euros. If the victim agrees, he or she is transferred to a payment page. Once the payment details have been entered, however, the victim is neither charged this sum nor does he or she receive any information about those “infected”. Instead, their credit card information has just been handed over to cybercriminals.

Ginp is a Trojan that has rapidly evolved since it first appeared, consistently acquiring new capabilities. In addition, while in the past the targets have primarily been residents of Spain, the name of this latest version suggests the attackers are planning to target other countries.

 “Cybercriminals have, for months, attempted to take advantage of the coronavirus crisis by launching phishing attacks and creating coronavirus-themed malware. This is the first time, though, we’ve seen a banking Trojan attempting to capitalize on the pandemic. It’s alarming, particularly since Ginp is such an effective Trojan. We encourage Android users to be particularly vigilant at this time—pop-ups, unfamiliar webpages, and spontaneous messages about coronavirus should always be viewed skeptically,” says Alexander Eremin, security expert at Kaspersky.

Kaspersky products successfully detect and block the threat.

Read more about Ginp on Kaspersky Daily.

To reduce the risk of being exposed to Ginp or other banking Trojans, Kaspersky experts recommend:

  • Only download apps from the official Android Stores.
  • Don’t click on suspicious links and never give away sensitive information, such as passwords or credit card information
  • Install a reliable security solution on your phone, like Kaspersky Internet Security for Android, that protects from a wide range of threats including banking Trojans

About Kaspersky

Kaspersky is a global cybersecurity company founded in 1997. Kaspersky’s deep threat intelligence and security expertise is constantly transforming into innovative security solutions and services to protect businesses, critical infrastructure, governments and consumers around the globe. The company’s comprehensive security portfolio includes leading endpoint protection and a number of specialized security solutions and services to fight sophisticated and evolving digital threats. Over 400 million users are protected by Kaspersky technologies and we help 270,000 corporate clients protect what matters most to them. Learn more at www.kaspersky.com

For further information please contact:
Sweta Fernandes I Account Executive

© Press Release 2020

Disclaimer: The contents of this press release was provided from an external third party provider. This website is not responsible for, and does not control, such external content. This content is provided on an “as is” and “as available” basis and has not been edited in any way. Neither this website nor our affiliates guarantee the accuracy of or endorse the views or opinions expressed in this press release.

The press release is provided for informational purposes only. The content does not provide tax, legal or investment advice or opinion regarding the suitability, value or profitability of any particular security, portfolio or investment strategy. Neither this website nor our affiliates shall be liable for any errors or inaccuracies in the content, or for any actions taken by you in reliance thereon. You expressly agree that your use of the information within this article is at your sole risk.

To the fullest extent permitted by applicable law, this website, its parent company, its subsidiaries, its affiliates and the respective shareholders, directors, officers, employees, agents, advertisers, content providers and licensors will not be liable (jointly or severally) to you for any direct, indirect, consequential, special, incidental, punitive or exemplary damages, including without limitation, lost profits, lost savings and lost revenues, whether in negligence, tort, contract or any other theory of liability, even if the parties have been advised of the possibility or could have foreseen any such damages.

More From Press Releases