Wednesday, 4 December 2024
29.8 C
Singapore

ESET unveils NGate: Android malware used in Czech ATM fraud

Discover how NGate, a new Android malware, relays NFC data to clone ATM cards and facilitate unauthorised withdrawals, as uncovered by ESET Research.

ESET Research has identified a novel form of Android malware known as NGate, which has been utilised to carry out sophisticated attacks on customers of three Czech banks. This malware uniquely captures and relays NFC traffic, enabling attackers to withdraw cash from ATMs by cloning the data from victims’ payment cards.

Detailed operation of NGate

NGate infiltrates Android devices through a malicious app that deceives users into believing they are responding to legitimate security concerns from their bank. Once installed, it enables criminals to capture NFC data from the victim’s payment card and transmit it to an attacker-controlled device. This setup allows the replication of the victim’s card, facilitating cash withdrawals from ATMs without the need for physical access to the card or rooting the victim’s device.

Lukáš Å tefanko of ESET elucidated the operation, saying, “We haven’t seen this novel NFC relay technique in any previously discovered Android malware. The technique is based on a tool called NFCGate, designed by students at the Technical University of Darmstadt, Germany, to capture, analyse, or alter NFC traffic; therefore, we named this new malware family NGate.”

Victims were duped into installing NGate via deceptive SMS messages that falsely alerted them about a compromised device due to a tax issue and urged them to install a linked application. Crucially, NGate was never available on the official .

Prevention and implications

The malware campaign began in November 2023 and involved domains impersonating legitimate platforms. It was part of a broader phishing strategy that included using progressive web apps and WebAPKs to distribute malicious content. By March 2024, following the arrest of a suspect linked to these activities, the spread of NGate had been curtailed.

ESET Research advises the public to adopt proactive security measures to mitigate the risk of such advanced threats. Ensuring security involves checking website URLs, downloading apps only from trusted sources, keeping PIN codes secret, using security apps on smartphones, turning off NFC when not in use, employing protective cases, and opting for virtual cards that require authentication.

Hot this week

Casio revives the original G-Shock with a modern twist

Casio revives its iconic G-Shock DW-5000C with the DW-5000R, blending original charm with modern features and eco-friendly materials.

The Browser Company unveils plans for AI-powered web browser Dia

The Browser Company unveils Dia, an AI-powered web browser set for 2025, with features like tab summaries, automation, and workflow integration.

Apple pushes back HomeKit robot vacuum support to early 2025

Apple delayed HomeKit robot vacuum support until early 2025, promising Siri-enabled cleaning features and smarter automation options.

US targets China with new wave of chip export restrictions

The US plans new chip export restrictions targeting China, affecting 140 firms and high-tech tools, to curb AI and military advancements.

AI-generated content played a minimal role in election misinformation, says Meta

Meta reveals AI content was less than 1% of election misinformation in 2024, highlighting modest risks and improved safeguards against falsehoods.

The Browser Company unveils plans for AI-powered web browser Dia

The Browser Company unveils Dia, an AI-powered web browser set for 2025, with features like tab summaries, automation, and workflow integration.

Jaguar unveils bold Type 00 concept electric car

Jaguar reveals its Type 00 concept electric car at Miami Art Week, showcasing bold design and previewing its next-gen EVs with a 430-mile range.

Crunchyroll delights anime fans with Tower of God seiyuu at AFA Singapore

Crunchyroll thrilled anime fans at AFA Singapore 2024 with a Tower of God seiyuu panel, meet-and-greet sessions, and a Solo Leveling immersive dome.

ASUS Republic of Gamers launches Gear to the Extreme global event

ASUS ROG announces Gear to the Extreme event, a global contest to showcase gaming setups with esports peripherals and US$10,000 in prizes.

Related Articles

Popular Categories