Imagine malware that infects your phone, grabs your debt card number and your PIN, and allows hackers to help themselves to the money you have in your bank account via an ATM machine. That would be dangerous, wouldn't you say? According to the Polish Computer Emergency Response Team (CERT Polska), such malware exists and your funds are at risk even if your debit card isn't stolen.
NGate can steal your debit card info and PIN without your knowledge
Dubbed NGate, this attack on Android phones is based on Near Field Communication (NFC) connectivity which is how your phone speaks with terminals when you check out at retail stores using debit cards, Apple Pay or Google Pay. Once a phone is infected with NGate, your debit card and PIN information are sent from an infected phone (possibly yours?) to servers owned by the attackers.
The contactless payment cards like your Visa or Mastercard debit and credit cards will generate a one-time use code (OTU) that can only be used once which you might think as a way to stop the attackers from stealing your debit card data. But where there's a will, there's a way. The attackers infect your phone, possibly by having you install a malicious app, and then trick you into doing a tap-to-pay verification action which includes typing in your PIN. All of this info is sent to the attacker's device.
The NGate attack can use an ATM to wipe out your bank account. | Image credit-Cybersecurity News
Remember, these OTU cards are only good for a limited time, which means that once the attacker has this data, he uses them immediately by accessing an ATM and using a card-emulating device such as a phone, smartwatch, or custom hardware.
Follow these suggestions to keep you from becoming a victim
To infect your device, the attackers use phishing emails or SMS messages in an attempt to get their malicious app installed on your phone. This phishing email or text message might pretend to come from your bank, internet or mobile provider claiming that you have an issue with your account. The goal is to make you so nervous that you do whatever you are told including installing a special app that is supposed to help clear up your issue. These apps are downloaded via a direct link and avoid the Google Play Store.
Once the app is installed, it asks for certain permissions to be enabled and asks you to verify the new card by having you perform a tap-to-pay action on the fake app that was sent by the attackers. While this is going on, an "accomplice" is hanging out at an ATM ready to drain your account.
The victim doesn't know he's a victim until it's too late
It's a scary scenario and it has worked. To prevent it from happening to you, Malware Bytes suggests that you listen to these tips:
Only download apps from trusted sources such as the App Store and Google Play Store. A bank will never ask you to use a different source.
Use an up-to-date real-time anti-malware solution for Android.
If someone calls claiming to be from your bank, tell them you'll call back and do so using a phone number you have on file.
Never respond to unsolicited text messages no matter how harmless they appear to be.
The above are outstanding recommendations that you should follow at all times. The attackers are counting on you getting so nervous after receiving a text stating that your bank account has irregularities, or you're about to lose your electric, water, wireless or other essential services, that you are willing to install anything without giving it a second thought.
Are you worried about NGate?
Yes. It seems like a perfect scam.
20%
No. I use common sense to avoid these scams.
80%
The problem is that with this attack, the victim isn't aware that his phone has been loaded with malware and that his bank account is being drained until it is well too late. So make sure that you follow the tips in this article to avoid being wiped out.
Iconic Phones is now up for pre-order in the US!
Our new coffee table book, Iconic Phones, is a stunning visual tribute to the legends in the world of phones, featuring exclusive high-resolution photography, stories, quotes and fun trivia. Pre-order now and save 15% with code: PARENA15
Alan, an ardent smartphone enthusiast and a veteran writer at PhoneArena since 2009, has witnessed and chronicled the transformative years of mobile technology. Owning iconic phones from the original iPhone to the iPhone 15 Pro Max, he has seen smartphones evolve into a global phenomenon. Beyond smartphones, Alan has covered the emergence of tablets, smartwatches, and smart speakers.
A discussion is a place, where people can voice their opinion, no matter if it
is positive, neutral or negative. However, when posting, one must stay true to the topic, and not just share some
random thoughts, which are not directly related to the matter.
Things that are NOT allowed:
Off-topic talk - you must stick to the subject of discussion
Offensive, hate speech - if you want to say something, say it politely
Spam/Advertisements - these posts are deleted
Multiple accounts - one person can have only one account
Impersonations and offensive nicknames - these accounts get banned
To help keep our community safe and free from spam, we apply temporary limits to newly created accounts:
New accounts created within the last 24 hours may experience restrictions on how frequently they can
post or comment.
These limits are in place as a precaution and will automatically lift.
Moderation is done by humans. We try to be as objective as possible and moderate with zero bias. If you think a
post should be moderated - please, report it.
Have a question about the rules or why you have been moderated/limited/banned? Please,
contact us.
FCC OKs Cingular\'s purchase of AT&T Wireless
Things that are NOT allowed:
To help keep our community safe and free from spam, we apply temporary limits to newly created accounts: