Once the application is installed, it requests for Google Accessibility Services permissions, begins to capture the user’s screen as well as forcing the victim to use it as the default SMS application.
This malware is also able to grant itself new accesses without user intervention and prevents users from removing its administration permissions or uninstalling it.
We have detected phishing emails targeting DBS cardholder customers and containing links to phishing websites.
Such phishing sites are designed to steal the customer's credit card information in order to conduct fraudulent transactions.
If the customer falls victim to the phishing email and clicks on the link, they will be redirected to a non-DBS website.