Hackers Inject Banking Apps To Steal Funds

Recent cybersecurity reports in 2024–2025 show threat actors decompiling and injecting banking mobile apps with trojans and backdoors, redistributing them via phishing and fake sites. Reports cite campaigns like GoldFactory causing over 11,000 infections in Southeast Asia and Kaspersky noting a 196% surge in banker Trojans. The trend pressures banks and developers to adopt RASP, obfuscation, anomaly detection, and enhanced user verification measures.
Key Points
- 1Report details hackers decompiling and repackaging banking apps with trojans and backdoors for distribution.
- 2Highlights massive regional impact: GoldFactory infected over 11,000 users, exploiting Southeast Asian government impersonation.
- 3Implies firms must deploy RASP, obfuscation, 2FA, anomaly detection, and user education to reduce fraud.
Scoring Rationale
Credible, actionable industry reporting with wide scope, but limited novelty as it extends known mobile banking threat patterns.
Sources
Public references used for this report.
Practice with real Banking data
90 SQL & Python problems · 15 industry datasets
250 free problems · No credit card
See all Banking problems
