Hackers Exploiting WhatsApp To Steal Bank Customers’ Credentials, Warns Cybersecurity Researchers
Cybersecurity researchers are warning about a dangerous new malware strain that targets banking customers by exploiting WhatsApp and SMS.
Dubbed “GhostBat RAT,” the malicious software masquerades as legitimate government-related apps, tricking users into downloading infected Android files from GitHub or compromised websites.
According to the team at Cyble , the malware campaign has resurged in India with alarming sophistication, using shortened URLs in WhatsApp messages and text alerts to deceive victims into believing they’re installing official transportation apps.
Once installed, GhostBat RAT deploys a phishing overlay that captures sensitive information including mobile banking credentials, UPI PINs, and account details. It also intercepts SMS messages containing banking-related keywords to siphon one-time passwords and two-factor authentication codes, giving attackers full access to victims’ financial accounts.
Researchers found that the malware communicates with a remote command-and-control server to exfiltrate stolen data in real time, while also granting attackers the ability to monitor user activity, send messages, and modify system settings.
Cyble says that the campaign leverages social engineering tactics to build trust and gain permissions that bypass Android’s default security safeguards.
The firm has urged users to remain vigilant, avoid downloading applications from unofficial links, and verify the authenticity of app publishers before installation. Security experts also recommend reviewing app permissions, updating Android systems regularly, and using reliable mobile antivirus tools.
“The GhostBat RAT campaign represents a sophisticated evolution of RTO-themed Android malware. It combines multi-stage dropper techniques, anti-analysis defenses, native code exploitation, and social engineering to compromise users.
By targeting both banking credentials and UPI authentication flows, the malware demonstrates an ability to extract financial information directly while evading traditional detection mechanisms.”
Generated Image: Midjourney
Disclaimer: The content of this article solely reflects the author's opinion and does not represent the platform in any capacity. This article is not intended to serve as a reference for making investment decisions.
You may also like
The Momentum ETF (MMT) Rally: Institutional Accumulation and the Mindset Behind Small-Cap Expansion in 2025
- Momentum ETF (MMT) surged 1330% in Q3 2025 due to $10M institutional investments from Coinbase Ventures, OKX, and Jump Crypto. - Market psychology shifts toward small-cap growth as Hartford Funds forecasts 2025 small-cap earnings to outpace large-cap peers amid macroeconomic uncertainty. - MMT's $12B DEX volume and $265M TVL highlight liquidity-driven speculation, but analysts warn long-term success depends on proving real-world utility beyond short-term inflows. - Mercurity Fintech's inclusion in MSCI S
Bitcoin News Update: DeFi Faces Liquidity Challenges Amid Bitcoin Falling Under $100K
- Bitcoin's drop below $100K triggered DeFi liquidity crises, with $650M in leveraged positions liquidated as automated stop-losses activated. - Wrapped Bitcoin (WBTC) integrated with Hedera blockchain to reduce MEV and frontrunning, aiming to inject liquidity into DeFi protocols. - Hyperion DeFi reported 60% MoM validator growth and new partnerships, emphasizing staking yields over leveraged positions to avoid market volatility. - Analysts like Tom Lee predict 6-8 weeks for recovery, contingent on stabili
Assessing How Recent Ecosystem Enhancements Influence Trust Wallet Token (TWT) Price Forecasts
- Trust Wallet's Q4 2025 upgrades expanded TWT's utility through FlexGas (gas fee payments) and Trust Premium loyalty incentives, transforming it from governance to transactional token. - TWT surged 129% to $1.6 by October 2025, fueled by Binance CZ's endorsement and institutional validation of its ecosystem-driven value proposition. - The token's growth aligns with multi-token economy trends, emphasizing cross-utility, stability, and transparency through fixed supply models and public audits. - While regu
Astar (ASTR) Price Rally: Cross-Chain Compatibility Fuels Altcoin Value Growth
- Astar (ASTR) surged in late 2025 due to strategic blockchain interoperability advancements and partnerships. - Collaboration with HTX includes TGE Catalyst Grants, listing acceleration, and CEX partnerships to boost DeFi adoption. - Astar 2.0's zkEVM and CCIP integration achieved 150,000 TPS, targeting 300,000 TPS by 2025 with enterprise partnerships. - Interoperability-driven projects like Astar are reshaping altcoin valuations, aligning with growing institutional DeFi demand.
Trending news
MoreCrypto prices
More
