We value your privacy

We use cookies to enhance your browsing experience, serve personalized ads or content, and analyze our traffic. By clicking "Accept All", you consent to our use of cookies.

Customize Consent Preferences

We use cookies to help you navigate efficiently and perform certain functions. You will find detailed information about all cookies under each consent category below.

The cookies that are categorized as "Necessary" are stored on your browser as they are essential for enabling the basic functionalities of the site. ... 

Always Active

Necessary cookies are required to enable the basic features of this site, such as providing secure log-in or adjusting your consent preferences. These cookies do not store any personally identifiable data.

No cookies to display.

Functional cookies help perform certain functionalities like sharing the content of the website on social media platforms, collecting feedback, and other third-party features.

No cookies to display.

Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics such as the number of visitors, bounce rate, traffic source, etc.

No cookies to display.

Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.

No cookies to display.

Advertisement cookies are used to provide visitors with customized advertisements based on the pages you visited previously and to analyze the effectiveness of the ad campaigns.

No cookies to display.

NewApp Digest
search bot

Hackers Spying on Android Phones in Real Time, Targeting 500+ Bank, Crypto and Payment Apps To Steal Sensitive Data: Cybersecurity Firm

June 29, 2025

A new iteration of a well-known banking malware is making its way onto Android devices, posing significant risks to users by enabling cybercriminals to capture login credentials and manipulate banking applications in real time, as reported by cybersecurity firm Zimperium.

Innovative Techniques in Malware

This latest version of the malware employs an advanced virtualization technique that allows it to hijack legitimate banking apps and other applications on a victim’s device. Rather than merely replicating a login screen, the malware installs a malicious “host” application that incorporates a virtualization framework. This host subsequently downloads and executes a copy of the targeted banking or cryptocurrency app within a controlled sandbox environment.

When users attempt to access their banking applications, they are seamlessly redirected to this virtualized instance. Here, every action—be it a tap or data entry—is meticulously monitored and manipulated by the malware in real time. This sophisticated approach enables the malware to intercept sensitive information, including login credentials and device PINs, ultimately facilitating complete account takeovers.

Targeting Financial Institutions Globally

The new version of the GodFather banking malware is particularly insidious, targeting users who download malicious applications from unofficial sources or fall victim to phishing schemes. It aims at nearly 500 financial applications worldwide, demonstrating a broad and comprehensive targeting strategy within the banking sector.

  • North America: The malware’s reach includes nearly every major national bank, along with prominent investment and brokerage firms, as well as widely-used peer-to-peer payment applications.
  • United Kingdom and Canada: The focus here is on the largest retail and commercial banking applications.
  • Europe: Major banks in Germany, Spain, France, and Italy are also on the malware’s target list.

In addition to banking applications, the malware extends its reach to cryptocurrency wallets and exchange platforms, as well as other popular applications within the digital payments and e-commerce sectors.

AppWizard
Hackers Spying on Android Phones in Real Time, Targeting 500+ Bank, Crypto and Payment Apps To Steal Sensitive Data: Cybersecurity Firm