Apparently there is malware that likes the Google Play Store more than others. The BankBot that was removed from the Store last year, and made a comeback last September is once again making his way into the Play Store.
This malware can steal your Banking password and user name and by doing that, can steal your account. The app is looking for Banking apps in the Play Store and when he finds them he infects them so when you will try to log in into the app, you will actually see fake login page.
The biggest issue with this malware is that it’s very sophisticated and can bypass security lines and two factor authentication with SMS.
The researchers who found this malware again in the Play Store said that the malware formed itself as a legit app in the Play Store. The app name is CryptoCurrency and for the regular user it looks like legit money converter. That’s how the malware actually bypasses the store security, BankBot use verified working apps that you can use and enjoy.
The CryptoCurrency app ask for permissions that most of us will not give, such as ability to read messages or access the internet. The real permission that the user give is to use fake log in page to extract your banking credentials.
The app and the malware gets updates regularly, the men behind the malware improve it every day, so its hard to discover it with Google security tools.