Short Bytes: AceCard has become one of the most advanced Android Trojans with severe dangerous capabilities like sneaking into any social or personal account, root permission of your phone and phishing into the banking apps. Kaspersky has some general precautions for Trojans like this, let’s tell you about them.
In the last phase of its attack, this trojan launches a massive attack affecting thousands of devices trying to steal banking and credit card information or spying on the devices.
Here is an interesting timeline evolution of the AceCard Trojan on Android:
As you can see in the picture above, it was just a backdoor program when it was released 2 years ago. After almost a year, it began turning on its banking capabilities like overlaying payment pages and modifying the phone to the factory reset. And in the last phase, it began to acquire the root capabilities of the phone.
AceCard is an Android banking trojan consisting of several modifications over the time. It performs its function by overlaying mobile banking applications with its own phishing forms that the unsuspecting user would be eager to fill in with their credit card data. Once a user presses ‘Submit’ (or a similar action), the data is stolen.
There are two main reasons which make AceCard deadlier:
- Unlike other banking Trojans, AceCard is capable of overlaying around more than 30 banking apps
- It can also be used for Phishing in social networking apps like Facebook, Twitters, Whats app, Skype, and Paypal App and Gmail client.
Here are some of the suggestions released by Kaspersky Antivirus for this Trojan: