Cybercriminals are using an android malware called Drinik to steal user’s sensitive data, especially mobile banking details.

Infographic - Drinik malware
Download Infographic

Download and share the infographic for free with employees

How does it work?

  1. An SMS containing a link to a phishing website is sent to the user, where they are asked to enter personal details.
  2. The user is then prompted to install a malicious application that requests permission to grant access to SMS, call logs, contacts etc.
  3. Once the access is granted, the attacker can steal the user’s sensitive information.
  4. Using stolen information, the attacker generates a screen that asks the user to enter mobile banking credentials.

How to protect yourself?

  1. Download apps from official app stores only.
  2. Never open links or attachments in unsolicited emails or SMS.
  3. Before browsing, make sure the URL matches the official website’s domain.