Android iBanking Malware Still Fetches $5,000 25
itwbennett (1594911) writes "Symantec and RSA published details on their blogs on Tuesday about the iBanking Android program, which is being used by two Eastern European cybercrime groups to intercept one-time SMS passcodes used for logging into bank accounts. IBanking's source code was leaked in February, which should have caused its price to drop. But its developer has continued to develop iBanking and provide support, and the malware is still commanding $5,000 per copy, one of the highest prices seen for a type of malware, according to research from Symantec."
Price and volume (Score:3)
IBanking sells for around $5,000 or for a cut of the proceeds from theft it facilitates, Symantec wrote.
Like all these stories, $5,000 may be the "sticker" or asking price. How many sold at this price or at any price is the important metric.
Re: (Score:2)
Like all these stories, $5,000 may be the "sticker" or asking price. How many sold at this price or at any price is the important metric.
The market for this kind of software is fairly small.. so 5k is very cheap... it's probably not feasible to hire real developers to do this.
I wouldn't be surprised if this guy could be making more money making enterprise software. SharePoint plugins, various CMS plugins, etc...
To a petty thief 5k is a lot of money, but for a legitimate business it's rather cheap, compared to doing any kind of development.
Re: (Score:3)
SharePoint plugins
Whoah now, even criminals have standards.
You have to install an apk from a pop-up (Score:2)
Re: (Score:2)
download free (Score:2, Funny)
Re: (Score:3)
Re: (Score:2)
Hey, I'm getting a 404 error. Can you report to usenet?
I think you need to open up some ports. Let me know your IP address and I can help you.
Source or no souce, if you can't use it... (Score:5, Interesting)
I cannot speak for this special case, since I lack the detailed info, but in general, those 5k bucks usually give you more than just the program. Such groups usually sell the whole package, including servers, server software, malware and for a little more money also a spam service to carpet bomb mail addresses with the malware spam.
In other words, you needn't be in any way apt with computers to commit "cybercrimes" anymore. You can get the "for dummies" package, including detailed step by step instructions how to use it.
Why those groups don't simply do it themselves and sell it instead? First, it's more profitable. And second, it's legal (for them at least, might be different in your country) to sell the software, but not to use it.
I don't know why, but it does start to remind me of drug cartels.
Apple isn't immune (Score:3)
Re: (Score:2)
The fact that you could't think of even come up with that thin an avenue of attack for Android's actual competitor iOS says it all.
I look forward to your comparisons of iOS with desktop Linux. Not.
Re: (Score:2)
iOS malware? (Score:1)
Dolphin Browser shit (it was reporting sites you visit to their ad server) affected both Android and iOS, however:
1) Media only talked about it affecting Android
2) It were actually Android users, who checked and caught it
sms != secure (Score:1)
actual write-up on the iBanking bot (Score:3)
The ITWorld article didn't mention it, so here's a link to the actual write-up on the bot, which is actually called Android/Spy.Agent.AF: Facebook Webinject Leads to iBanking Mobile Bot [welivesecurity.com].
Regards,
Aryeh Goretsky