Beware Android Users: Cyber criminals use ‘Drinik’ malware as a disguise for Income Tax refund app

If you are an Android smartphone user and are using banking services on your device, you might be vulnerable to malware which disguises as Income Tax Department’s app. According to an advisory of Indian Computer Emergency Response Team (CERT-In), the Android users can be a potential victim of the app as it steals credentials of the users by promising income tax returns.

The nodal agency informed that the cyber criminals send a link to the users’ device which takes them to a website similar to that of Income Tax Department portal. After that the users are asked to download a malicious app which installs the Drinik malware. The malware extracts all the sensitive information on the device of the user by promising to generate income tax refunds.

According to the advisory of CERT-In, the targets receive a SMS containing the link of the malware. After asking some personal information, the app is downloaded. The malicious app is able to disguise as a genuine version of the IT Dept. App which help to generate tax refunds. Just like the original application, the malware asks users to grant permission like SMS messages, call details and contacts. The fake income tax refund application on the app asks information like PAN, Aadhaar number, address, and date of birth from the user. Other financial details like the IFSC code, CIF number, and credentials of debit card number including expiry date, CVV, PIN are also collected.

After gathering the banking details from users, the hackers are able to conducts frauds in connection to your bank account. According to the government customers of more than 27 Indian (public and private) banks have been targeted by the malware. If you use an IT Dept App for income tax refund, then you should be aware of this malware.

Also read: Airtel reintroduces its cheapest prepaid plan at Rs 49, Know the plan details