Saturday, August 23, 2025
  • Hype
  • Murai
  • Lipstiq
  • Miss Murai
  • Varnam
  • Moviedash
  • Autofreaks
Lowyat.NET
  • News
    • Lifestyle
    • Computing
    • Hardware
    • Internet
    • Rumours & Leaks
    • Software
  • Forums
    • Kopitiam
    • Tradezone
    • Property Talk
    • Finance & Business
    • Fast and Furious
  • Gaming
    • PC Gaming
    • Console
    • Esports
  • Mobile
    • Apps
    • OS
    • Tablets
    • Phones
    • Telco
      • Celcom
      • DiGi
      • Maxis
      • Tune Talk
      • U Mobile
      • Buzzme
  • Pricelists
    • Compu-zoneUpdated
    • ViewnetUpdated
    • Sri ComputersUpdated
    • StartecUpdated
  • More
    • Automotive Tech
    • Drone
    • Enterprise
    • Entertainment
    • Fashion
    • E-Hailing
    • Wearables
No Result
View All Result
Lowyat.NET
  • News
    • Lifestyle
    • Computing
    • Hardware
    • Internet
    • Rumours & Leaks
    • Software
  • Forums
    • Kopitiam
    • Tradezone
    • Property Talk
    • Finance & Business
    • Fast and Furious
  • Gaming
    • PC Gaming
    • Console
    • Esports
  • Mobile
    • Apps
    • OS
    • Tablets
    • Phones
    • Telco
      • Celcom
      • DiGi
      • Maxis
      • Tune Talk
      • U Mobile
      • Buzzme
  • Pricelists
    • Compu-zoneUpdated
    • ViewnetUpdated
    • Sri ComputersUpdated
    • StartecUpdated
  • More
    • Automotive Tech
    • Drone
    • Enterprise
    • Entertainment
    • Fashion
    • E-Hailing
    • Wearables
No Result
View All Result
Lowyat.NET
No Result
View All Result
Home Security

Banking Phishing Scam Found Impersonating Several Malaysian Apps

Targeting cleaning services and a pet store.

by Ikmal Rozlan
April 8, 2022
phishing scam

Image: mohamed_hassan/Pixabay

684
SHARES
Share on FacebookShare on Twitter

Slovakian cyber security firm ESET Research has published a report detailing how malicious Android apps have been targeting customers of eight Malaysian banks. The campaign has been ongoing since late 2021 and apparently uses fake apps and websites of legitimate Malaysian companies to phish for banking credentials.

It was first identified when a Facebook user shared his experience of almost being scammed through an app impersonating the legitimate company Maid4u. Since then, a total of seven websites have been attributed to the impersonation campaign with the majority of them being cleaning services: Grabmaid, Maria’s Cleaning, Maid4u, YourMaid, Maideasy and MaidACall, and a pet store named PetsMore.

banking phishing scam fake e-shop app
Grabmaid: legitimate website on the left, copycat on the right. [Image: welivesecurity]

The copycat websites will direct users to download apps from the Google Play Store, although the buttons will instead lead the unsuspecting victims to servers under the scammers’ control. The attack will prompt users to enable “Install unknown apps” on their phones.

The campaign is quite sophisticated as it will ask users to sign in after installing the app, though there’s no actual account validation and any input will be declared correct. The fake e-shop matches much of the interface of the real store and during checkout, presenting victims with an option to pay with a bank transfer.

banking phishing scam targeted banks
Targeted banks on fake FPX page. [Image: welivesecurity]

Users are then presented with a fake FPX payment page and given an option between eight banks: Maybank, Affin Bank, Public Bank Berhad, CIMB, BSN, RHB, Bank Islam Malaysia, and Hong Leong. Once they submit their banking details, they’ll receive an error message regarding their transaction. However, at this point, the bad actors have already received the credentials.

ALSO READ:  Google Rolls To Use AI To Fight Scams On Chrome

To finish the scam, the fake app also forwards all SMS to the operators in case they contain Two-Factor Authentication (2FA) codes sent by the bank. ESET notes that the phishing campaign is only operating in Malaysia for now, but doesn’t disqualify the possibility of it expanding to other countries later on.

(Source: ESET [1][2])

Filed Under Bankingcyber securityESETPhishingScam
Updated 11:50 am, Fri, 8 April 22
http://lowy.at/K7L3M
Share274Tweet171SendShare

Follow us on Instagram, Facebook, Twitter or Telegram for more updates and breaking news. 

No Result
View All Result

TRENDING THIS WEEK

  1. 1
    News

    MOF: MyKad, E-Wallets, Fuel Apps Considered For RON95 Subsidy Delivery

  2. 2
    Storage

    Seagate, KPDN Take Down Counterfeiting Hard Drive Workshop Outside Kuala Lumpur

  3. 3
    Banking

    HSBC Launches New Premier Card Travel Benefits To Entice New Customers

  4. 4
    Mobile Phones

    Google Pixel 10 Official In Malaysia From RM3,999

  5. 5
    Apps

    First Look At The MyGOV Malaysia Super App Beta

NETWORK

  • Hype
  • Murai
  • Lipstiq
  • Miss Murai
  • Varnam
  • Moviedash
  • Autofreaks

ABOUT

  • Advertise
  • Careers
  • Privacy Statement
  • Contact Us
  • Editorial Policy
  • Terms & Conditions

©2025 VIJANDREN RAMADASS. ALL RIGHTS RESERVED.

No Result
View All Result
  • News
    • Lifestyle
    • Computing
    • Hardware
    • Internet
    • Rumours & Leaks
    • Software
  • Forums
    • Kopitiam
    • Tradezone
    • Property Talk
    • Finance & Business
    • Fast and Furious
  • Gaming
    • PC Gaming
    • Console
    • Esports
  • Mobile
    • Apps
    • OS
    • Tablets
    • Phones
    • Telco
      • Celcom
      • DiGi
      • Maxis
      • Tune Talk
      • U Mobile
      • Buzzme
  • Pricelists
    • Compu-zone
    • Viewnet
    • Sri Computers
    • Startec
  • More
    • Automotive Tech
    • Drone
    • Enterprise
    • Entertainment
    • Fashion
    • E-Hailing
    • Wearables

©2025 VIJANDREN RAMADASS. ALL RIGHTS RESERVED.

No Result
View All Result
  • News
    • Lifestyle
    • Computing
    • Hardware
    • Internet
    • Rumours & Leaks
    • Software
  • Forums
    • Kopitiam
    • Tradezone
    • Property Talk
    • Finance & Business
    • Fast and Furious
  • Gaming
    • PC Gaming
    • Console
    • Esports
  • Mobile
    • Apps
    • OS
    • Tablets
    • Phones
    • Telco
      • Celcom
      • DiGi
      • Maxis
      • Tune Talk
      • U Mobile
      • Buzzme
  • Pricelists
    • Compu-zone
    • Viewnet
    • Sri Computers
    • Startec
  • More
    • Automotive Tech
    • Drone
    • Enterprise
    • Entertainment
    • Fashion
    • E-Hailing
    • Wearables

©2025 VIJANDREN RAMADASS. ALL RIGHTS RESERVED.