Skip to main content

Russian Android malware infects millions of phones, drains bank accounts

Hackers used mobile malware to steal hundreds of thousands of dollars from bank customers. That’s according to Reuters, which reported on May 22 that cybercriminals tricked Russian users of Google’s Android operating system into downloading malicious apps.

The group of 16 Russian hackers, operating under the code name “Cron” after the malware they used, disguised the malware as fake banking applications and pornography web clients. When Android users in Russia searched online, the search engine results would suggest the fake apps.

Recommended Videos

The core members of the group were arrested on November 22 last year, before they could mount attacks outside Russia. But according to Group-IB, the cyber security firm investigating the attack with the Russian Interior Ministry, the Cron group infected more than a million smartphones in Russia at a rate of 3,500 devices a day.

“Cron’s success was due to two main factors,” Dmitry Volkov, head of investigations at Group-IB, said in a statement. “First, the large-scale use of partner programs to distribute the malware in different ways. Second, the automation of many (mobile) functions which allowed them to carry out the thefts without direct involvement.”

They targeted customers of Sberbank, Alfa Bank, and online payments company Qiwi, exploiting SMS text message transfer services. The group sent texts from infected devices instructing the banks to transfer money to the hackers’ accounts — up to $120 to one of the 6,000 fraudulent accounts. And they intercepted the transaction confirmation codes, preventing the victims from receiving a messages notifying them about the transaction.

They’d planned to go after large European banks including French lenders Credit Agricole, BNP Paribas, and Societe General, according to Group-IB.

Cron malware, which was first detected in mid-2015, had been in use for more than a year before the arrests. The Russian hackers rented a “Tiny.z,” a piece of malware designed to attack checking accounts systems, for $2,000 a month in June 2016, and adapted it to target European banks in Britain, Germany, France, the United States, and Turkey, among other countries.

Lukas Stefanko, a malware researcher at cyber security firm ESET in Slovakia, told Reuters that the exploit highlighted the dangers of SMS messages in mobile banking.

“It’s becoming popular among developing nations or in the countryside where access to conventional banking is difficult for people,” he said. “For them it is quick, easy, and they don’t need to visit a bank … But security always has to outweigh consumer convenience.”

Kyle Wiggers
Former Digital Trends Contributor
Kyle Wiggers is a writer, Web designer, and podcaster with an acute interest in all things tech. When not reviewing gadgets…
March 4 is going to be a big day for this fun Android phone brand
The rear panel and camera island on the Nothing Phone 2a.

Nothing has released yet another vague teaser for what could be a new smartphone, but this time the information shared includes a date and time: 10 a.m. GMT on March 4. The post, first shared to Nothing's X account, doesn't share many details — just a vague shape that some fans have already tied to the phone's camera module, or perhaps its iconic glyph interface.

Nothing is no stranger to cryptic teasers; in fact, it's one of the company's preferred marketing methods. Nothing has a history of slowly doling out information in the weeks leading up to launch, and that technique has proven effective in building hype.

Read more
I found two of the most ridiculous Android phones I’ve ever seen at CES 2025
The Oukitel WP100 Titan at CES 2025.

One of my favorite things about big trade shows like CES is all the weird stuff you can come across. It's cool to see big announcements from well-known brands, but it's sometimes more fun to find something utterly bizarre that you weren't expecting. That's precisely what happened when I visited Oukitel's booth at CES 2025.

Oukitel isn't a household name in the U.S., though the 18-year-old company has a history of creating some of the weirdest and wackiest Android phones on the market. I saw two of them at this year's CES, both of which are hilariously over-the-top.
A smartphone with a built-in smartwatch

Read more
Here’s how your Android phone could help stop your motion sickness
Someone holding the Google Pixel 9 with the screen on.

Motion sickness — also called kinetosis — is a common problem. In fact, as many as one in three people have felt sick while in a vehicle. For those who suffer from it, reading in the car is practically impossible.

Apple introduced a feature that helps those prone to motion sickness use their phones without the accompanying nausea. Now, Google is working on a similar feature for Android phones.

Read more