Rewards Hub Cybersecurity researchers have identified a new Android malware, GhostBat RAT, which targets WhatsApp and SMS to steal banking credentials. The malware masquerades as a legitimate government app, tricking users into downloading infected files from GitHub or compromised sites. Once installed, it uses phishing overlays to capture sensitive data such as mobile banking credentials, UPI PINs, and account details. It also intercepts SMS messages to steal one-time passwords and 2FA codes, granting attackers full access to victims' financial accounts.
GhostBat RAT communicates with remote command-and-control servers, enabling attackers to monitor user activity, send messages, and alter system settings. Experts recommend avoiding unofficial app downloads, verifying app publishers, checking permissions, regularly updating Android devices, and using trusted antivirus tools to mitigate risks.
GhostBat RAT Targets WhatsApp Users for Banking Credential Theft
Disclaimer: The content provided on Phemex News is for informational purposes only. We do not guarantee the quality, accuracy, or completeness of the information sourced from third-party articles. The content on this page does not constitute financial or investment advice. We strongly encourage you to conduct you own research and consult with a qualified financial advisor before making any investment decisions.