A new Android banking trojan that uses a mix of human and artificial intelligence agents to steal from victims is now targeting a payments system relied on by tens of millions of people.
According to cybersecurity firm Zimperium, the PixRevolution banking malware is targeting users of Brazil’s PIX payment system by first surveilling them in real-time and then draining their funds when they initiate transactions.
Per Zimperium, PixRevolution banking malware drains funds in a five-step process that includes monitoring for victims to initiate PIX payments.
Upon detecting an imminent PIX transaction, the malware notifies its command and control server, which subsequently alerts an AI or human agent to start watching the victim’s screen in real time. Once the process to transfer funds is underway, the agent sends a command that discreetly changes the intended recipient to the attacker’s preferred account.
“What distinguishes this threat from conventional banking trojans is its fundamental design: a human or AI agent operator is actively engaged on the remote end, observing the victim’s phone screen instantaneously, poised to act at the precise moment of transaction.”
Zimperium says that victims don’t usually notice anything unusual as their banking app performs as normal and they receive all the confirmations necessary to conclude that a successful transaction took place. According to Zimperium, it is only later that victims realize that the money was sent to the wrong recipient.
“And because PIX transfers are instant and final, recovery is extraordinarily difficult.”
The PIX payment system processes over three billion transactions every month and boasts more than 150 million registered users.
Some of the financial institutions that the PixRevolution banking malware is targeting include Santander Brasil, Banco do Brasil and Nubank. In 2021, the investing conglomerate associated with legendary investor Warren Buffett, Berkshire Hathaway, invested $0.5 billion in Nubank.
Follow us on X, Facebook and Telegram
Don’t Miss a Beat – Subscribe to get email alerts delivered directly to your inbox
Check Price Action
Surf The Daily Hodl Mix
 
Disclaimer: Opinions expressed at The Daily Hodl are not investment advice. Investors should do their due diligence before making any high-risk investments in Bitcoin, cryptocurrency or digital assets. Please be advised that your transfers and trades are at your own risk, and any losses you may incur are your responsibility. The Daily Hodl does not recommend the buying or selling of any assets including cryptocurrencies, nor is The Daily Hodl an investment advisor. Please note that The Daily Hodl participates in affiliate marketing.
Generated Image: DALLE3
The post Bank Trojan Hits Android Users, Targets Payment System Used by 150,000,000 People appeared first on The Daily Hodl.
