he Began to act in Russia and now there are variants of this ‘malware’ mobile doing damage in Italy, France and the United Kingdom,

To the middle of last year began to be observed in the activity of the malware mobile Riltok (fusion of Real Talk), a trojan banking now is spreading from Russia to other parts in the world. Until there would be 4 000 users affected.

“We have been observing how the malware Riltok is being rolled out slowly but steadily throughout Russia, and we expect to see an increase in attacks as the cybercriminals who are behind this threat to extend its reach to new countries and continents, starting with Europe”, indicates Tatyana Shishkova, a researcher at Kaspersky security.

According to warns the security company, there are already variants Riltok moving by european countries such as Italy, France and the United Kingdom, you have come posing as other services.

“We have seen this scenario many times before,”, says Shishkova, who adds, “according to our experience, once the actors of the threats created a malware successful, and prove it in Russia, adapt to the foreign victims, and explore new territories. Usually, these threats end up becoming world”.

To proceed to the infection with Riltok, first sent to the smartphone of the victims to an SMS with a link to a website reminiscent of a well-known site advertising. Once in that web, se invites the user to upgrade the application mobile service, that actually will begin the download of the malware. When it receives the necessary permissions, the software you have downloaded becomes the default application for SMS, so that the criminals will have access to the sent and received messages. Among them, the messages with confirmation codes for banking operations.

And is that Riltok seeks access to accounts and hijack online sessions. Is able to steal credentials showing screens bogus store application or of the application of the bank and also opening a web phishing in the browser. Performs checks to verify the accuracy of the details provided and hides the notifications of legitimate applications.

experts warn against clicking on suspicious links that arrive via SMS, as well as to install programs from sources that are not known. And, on the contrary, advises to review the permissions requested by the applications and use security solutions on mobile devices.