The article discusses a new Android malware-as-a-service (MaaS) platform called SuperCard X, which enables near-field communication (NFC) relay attacks for committing fraud against banking customers in Italy. Security firm Cleafy reports that threat actors are leveraging social engineering tactics, such as smishing and phone calls, to trick victims into installing malicious applications. By impersonating bank alerts, attackers create a false sense of urgency, leading victims to expose sensitive information. A novel NFC relay method allows them to authorize fraudulent payments and ATM withdrawals covertly. The malware is spread through three deceptive applications.
The operation centers around a new Android MaaS platform, SuperCard X, that employs advanced social engineering tactics to facilitate NFC relay attacks, targeting bank customers.
Collection
[
|
...
]