Banking Trojan Malware Disguises Itself As Super Mario Run To Victim Android Users
The Nintendo's "Super Mario Run" become so popular after its debut on a mobile phone last December. Now, its name is used by cybercriminals to trick users and get their personal details.
The Trojan malware disguises itself as "Super Mario Run" as modus to get the user's bank account details and credit card number. They are taking advantage to those desperate Android users who attempting to download an Android version of the game in the third-party websites.
Currently, the "Super Marion Run" game is available only for iOS phone users. Due to the popularity of the game, many Android users are trying to find some ways to play it on their phone. One of these is downloading from unsafe third-party websites.
Attackers are actively looking to exploit the demand by tricking users into downloading the Marcher Trojan, which used to steal bank information. The malware seems the "Super Mario Run" game, but the users didn't know until they install it to their phone.
According to ZDNet, the Marcher Trojan malware has been repeatedly disguised, like "Super Mario Run," and evolved in order to fool unsuspecting victims into installing it. They are tricking users into entering their banking details into a fake overlay page which hands them directly to the attackers.
The Zscaler also reports about this modus, knowing that Android users are eagerly waiting for "Super Mario Run," the Trojan malware will attempt to present a fake web page promoting its release. Some details of the malware are cited in their report.
The Marcher malware has been around since March 2013 and originated on Russian underground forums. It became a global threat with the Trojan targeting bank customers around the globe. The best way to avoid falling to this modus is download "Super Mario Run" and other application only from the trusted stores like Google Play Store (when it is released) and Apple App Store.