Connect with us

Technology

New Android malware can empty your bank account in seconds

Published

on

New Android malware can empty your bank account in seconds

NEWYou can now listen to Fox News articles!

Android users have been dealing with a steady rise in financial malware for years. Threats like Hydra, Anatsa and Octo have shown how attackers can take over a phone, read everything on the screen and drain accounts before you even notice anything wrong. Security updates have helped slow some of these strains, but malware authors keep adapting with new tricks. 

The latest variant spotted in circulation is one of the most capable yet. It can silence your phone, take screenshots of banking apps, read clipboard entries, and even automate crypto wallet transactions. This threat is now known as Android BankBot YNRK, and it is far more advanced than typical mobile malware.

Sign up for my FREE CyberGuy ReportGet my best tech tips, urgent security alerts and exclusive deals delivered straight to your inbox. Plus, you’ll get instant access to my Ultimate Scam Survival Guide — free when you join my CYBERGUY.COM newsletter

How the malware infiltrates devices

HOW ANDROID MALWARE LETS THIEVES ACCESS YOUR ATM CASH

Advertisement

Android banking malware is getting harder to spot as attackers use new tricks to take over phones and drain accounts. (Thomas Trutschel/Photothek via Getty Images)

BankBot YNRK hides inside fake Android apps that appear legitimate when installed. In the samples analyzed by researchers at Cyfirma, the attackers used apps that impersonated official digital ID tools. Once installed, the malware begins profiling the device by collecting details such as brand, model and installed apps. It checks whether the device is an emulator to avoid automated security analysis. It also maps known models to screen resolutions, which helps it tailor its behavior to specific phones.

To blend in, the malware can disguise itself as Google News. It does this by changing its app name and icon, then loading the real news.google.com site inside a WebView. While the victim believes the app is genuine, the malware quietly runs its background services.

One of its first actions is to mute audio and notification alerts. This prevents victims from hearing incoming messages, alarms or calls that could signal unusual account activity. It then requests access to Accessibility Services. If granted, this allows the malware to interact with the device interface just like a user. From that point onward, it can press buttons, scroll through screens and read everything displayed on the device.

BankBot YNRK also adds itself as a Device Administrator app. This makes it harder to remove and helps it restart itself after a reboot. To maintain long-term access, it schedules recurring background jobs that relaunch the malware every few seconds as long as the phone is connected to the internet.

Advertisement

What does the malware steal

Once the malware receives commands from its remote server, it gains near-complete control of the phone. It sends device information and installed app lists to the attackers, then receives a list of financial apps it should target. This list includes major banking apps used in Vietnam, Malaysia, Indonesia and India, along with several global cryptocurrency wallets.

With Accessibility permissions enabled, the malware can read everything shown on the screen. It captures UI metadata such as text, view IDs and button positions. This helps it reconstruct a simplified version of any app’s interface. Using this data, it can enter login details, swipe through menus or confirm transfers. It can also set text inside fields, install or remove apps, take photos, send SMS, turn call forwarding on and open banking apps in the background while the screen appears inactive.

In cryptocurrency wallets, the malware acts like an automated bot. It can open apps such as Exodus or MetaMask, read balances and seed phrases, dismiss biometric prompts, and carry out transactions. Because all actions happen through Accessibility, the attacker never needs your passwords or PINs. Anything visible on the screen is enough.

The malware also monitors the clipboard, so if users copy OTPs, account numbers or crypto keys, the data is immediately sent to the attackers. With call forwarding enabled, incoming bank verification calls can be silently redirected. All of these actions happen within seconds of the malware activating.

BankBot YNRK hides inside fake apps that look legitimate, then disguises itself as Google News while it runs in the background. (AP Photo/Don Ryan, File)

Advertisement

7 steps you can take to stay safe from banking malware

Banking trojans are getting harder to spot, but a few simple habits can reduce the chances of your phone getting compromised. Here are seven practical steps that help you stay protected. 

FBI WARNS OVER 1 MILLION ANDROID DEVICES HIJACKED BY MALWARE

1) Install strong antivirus software

Strong antivirus software helps catch trouble early by spotting suspicious behavior before it harms your Android device or exposes your data. It checks apps as you install them, alerts you to risky permissions and blocks known malware threats. Many top antivirus options also scan links and messages for danger, which adds an important layer of protection when scams move fast.

The best way to safeguard yourself from malicious links that install malware, potentially accessing your private information, is to have strong antivirus software installed on all your devices. This protection can also alert you to phishing emails and ransomware scams, keeping your personal information and digital assets safe.

Get my picks for the best 2025 antivirus protection winners for your Windows, Mac, Android & iOS devices at Cyberguy.com

Advertisement

2) Use a data-removal service to shrink your digital footprint

Data brokers quietly collect and sell your personal details, which helps scammers target you with more convincing attacks. A reputable data-removal service can find and delete your information from dozens of sites so that criminals have less to work with. This reduces spam, phishing attempts and the chances of ending up on a malware attack list.

While no service can guarantee the complete removal of your data from the internet, a data removal service is really a smart choice. They aren’t cheap, and neither is your privacy. These services do all the work for you by actively monitoring and systematically erasing your personal information from hundreds of websites. It’s what gives me peace of mind and has proven to be the most effective way to erase your personal data from the internet. By limiting the information available, you reduce the risk of scammers cross-referencing data from breaches with information they might find on the dark web, making it harder for them to target you.

Check out my top picks for data removal services and get a free scan to find out if your personal information is already out on the web by visiting Cyberguy.com

Get a free scan to find out if your personal information is already out on the web: Cyberguy.com

3) Install apps only from trusted sources

Avoid downloading APKs from random websites, forwarded messages or social media posts. Most banking malware spreads through sideloaded apps that look official but contain hidden code. The Play Store is not perfect, but it offers scanning, app verification and regular take-downs that greatly reduce the risk of installing infected apps.

Advertisement

4) Keep your device and apps updated

System updates often patch security issues that attackers exploit to bypass protections. Updating your apps is just as important, since outdated versions may contain weaknesses. Turn on automatic updates so that your device stays protected without you having to check manually.

5) Use a strong password manager

A password manager helps you create long, unique passwords for every account. It also saves you from typing passwords directly into apps, which reduces the chance of malware capturing them from your clipboard or keystrokes. If one password gets exposed, the rest of your accounts remain safe.

Next, see if your email has been exposed in past breaches. Our No. 1 password manager (see Cyberguy.com) pick includes a built-in breach scanner that checks whether your email address or passwords have appeared in known leaks. If you discover a match, immediately change any reused passwords and secure those accounts with new, unique credentials. 

Once active, the malware can read your screen, steal financial data, automate crypto transfers and intercept OTPs within seconds. (Kurt “CyberGuy” Knutsson)

Check out the best expert-reviewed password managers of 2025 at Cyberguy.com

Advertisement

6) Enable two-factor authentication wherever possible

2FA adds a confirmation step through an OTP, authenticator app or hardware key. Even if attackers steal your login details, they still need this second step to get in. It cannot stop malware that takes over your device, but it significantly limits how far an attacker can go with stolen credentials.

GOOGLE ISSUES WARNING ON FAKE VPN APPS

7) Review app permissions and installed apps regularly

Malware often abuses permissions such as Accessibility or Device Admin because they allow deep control over your phone. Check your settings to see which apps have these permissions and remove anything that looks unfamiliar. Also, look through your installed apps and uninstall any tool or service you do not remember adding. Regular reviews help you spot threats early before they can steal data.

Kurt’s key takeaway

BankBot YNRK is one of the most capable Android banking threats discovered recently. It combines device profiling, strong persistence, UI automation and data theft to gain full control over a victim’s financial apps. Because much of its activity relies on Accessibility permissions, a single tap from the user can give attackers complete access. Staying safe means avoiding unofficial APKs, reviewing installed apps regularly and being cautious of any sudden request to enable special permissions.

Do you think Android phone makers like Samsung or Google are doing enough to protect you from malware? Let us know by writing to us at Cyberguy.com

Advertisement

CLICK HERE TO DOWNLOAD THE FOX NEWS APP

Sign up for my FREE CyberGuy Report Get my best tech tips, urgent security alerts and exclusive deals delivered straight to your inbox. Plus, you’ll get instant access to my Ultimate Scam Survival Guide – free when you join my CYBERGUY.COM newsletter

Copyright 2025 CyberGuy.com.  All rights reserved.

Technology

Sony’s PlayStation disc factory is already being repurposed

Published

on

Sony’s PlayStation disc factory is already being repurposed

The video game disc is dead, and Sony’s been planning to kill it for some time, according to a report out of Austria. The man who leads Sony’s discmaking operations, Sony DADC president Dietmar Tanzer, told ORF Salzburg that the company’s Thalgau plant produces 600,000 discs every day, half of which are for PlayStation. But since it’ll only be making 10 percent of that volume in 2028, it’s planning to retrain all 300 employees to work on optical microlenses instead.

Thalgau isn’t just one of Sony’s disc plants. It’s where the disc-making division is headquartered, and appears to be its only remaining wholly owned disc manufacturing facility. Sony made discs in the United States for decades, originally in Terre Haute, Indiana and later in New Jersey, but it closed the latter plant in 2011 and moved all manufacturing from Indiana to Thalgau in 2022. Today, the Indiana facility markets itself to automakers who need help packaging and assembling headlights and the like instead.

This transition didn’t happen overnight. A behind-the-scenes video from December 2024 shows that the Thalgau plant was already working on microlenses as of then:

Those lenses, too, are created using discs:

ORF Salzburg writes that Sony has now invested €30 million to manufacture these microlenses, and that mass production may begin “as early as next year.”

Advertisement

Microlenses are theoretically used in all kinds of emerging applications where you might want to bend light, including headsets, but it appears that Sony may cater to automakers here, too. The head of Sony’s micro optics division gave ORF Salzburg the example of “a car turn signal that is projected onto asphalt.”

All of this is to say: Sony didn’t make this decision in a hurry, and it isn’t likely to change its mind despite the predictable backlash. It’s been winding down disc manufacturing for decades, and it’s ripping off one last band-aid with PlayStation.

According to Sony DADC’s website, it has produced over 26.4 billion discs to date — the vast majority, 23 billion of them, were made between 1983 and 2022 in Terre Haute, Indiana.

Continue Reading

Technology

New sodium-ion battery could reshape grid storage

Published

on

New sodium-ion battery could reshape grid storage

NEWYou can now listen to Fox News articles!

A new sodium-ion battery from Chinese battery giant CATL could eventually affect something much closer to home: the power grid that keeps your lights on. CATL has introduced its TENER Sodium Energy Storage System. The company says it is the world’s first field-validated sodium-ion energy storage system ready for commercial use.

Advertisement

Think big energy project, not phone upgrade. This battery is built for large storage sites that can support the grid. That kind of storage is getting more attention as electricity demand rises. AI data centers use a lot of power. Heat waves can strain local grids. Solar and wind power also need storage so electricity is available when people need it.

However, CATL has not announced a specific U.S. launch for this system. So, this is more about where grid storage may be headed than what your local utility will install tomorrow.

FOX NEWS POLL: VOTERS SEE AI REGULATION AS URGENT, RANK SAFEGUARDS AHEAD OF INNOVATION

CATL unveiled its TENER Sodium Energy Storage System in Munich as sodium-ion batteries move closer to commercial grid storage. (CATL)

Sign up for my FREE CyberGuy Report

Advertisement
  • Get my best tech tips, urgent security alerts and exclusive deals delivered straight to your inbox.
  • For simple, real-world ways to spot scams early and stay protected, visit CyberGuy.com – trusted by millions who watch CyberGuy on TV daily.
  • Plus, you’ll get instant access to my Ultimate Scam Survival Guide free when you join.

New sodium-ion battery targets grid storage

CATL just launched the TENER Sodium Energy Storage System in Munich, Germany. The company says cumulative shipments should reach 1 gigawatt-hour by the end of 2026. Deliveries in China are expected to start in September 2026. Global deliveries are scheduled to begin in June 2027.

That timeline shows sodium-ion batteries are moving closer to commercial use. The system is designed for stationary storage. In other words, it could help store electricity from solar farms, wind projects or other power sources for later use.

That becomes important when demand jumps during hot afternoons or renewable power drops later in the day.

Sodium-ion battery storage could ease lithium pressure

Most large battery storage projects today use lithium-based systems. Lithium works well, but supply chains can be tight. Prices can also move when demand climbs. CATL says sodium is more than 1,000 times more common than lithium. The company also says sodium is widely distributed around the world.

That could make sodium-ion batteries attractive for grid storage. These batteries do not need to be tiny enough for a phone or light enough for an electric car.

CATL isn’t saying sodium will replace lithium overnight. Instead, the company says sodium and lithium could work together in future energy storage systems.

Advertisement

For you, the larger point is choice. More battery options could help energy companies reduce their dependence on a single material.

AI BOOM: DEMAND FOR DATA CENTERS DRIVES INNOVATION BY ENERGY, TECH INDUSTRIES TO PRODUCE NEW POWER SOURCES

CATL says the battery fits existing systems

One of CATL’s bigger claims is that TENER Sodium can fit into existing lithium iron phosphate energy storage platforms. CATL says the system shares the same physical footprint as LFP systems. That could help developers avoid changing enclosures, redesigning projects or repeating certification steps.

The system delivers more than 30 megawatt-hours of rated capacity. CATL says each module weighs about 42 metric tons, or about 46 U.S. tons. The company says only 34 units are needed for a 1-gigawatt-hour storage site. The modular design also supports flexible storage durations of 1, 2, 4, 6 and 8 hours. That gives developers more room to tailor projects based on local power needs.

Sodium-ion battery design can handle tough conditions

The TENER Sodium system is built for large energy projects, not home use, with modules designed to store power for the grid. (CATL)

Advertisement

Battery storage has to work in places that get brutally hot or freezing cold. CATL says TENER Sodium is designed for better extreme-temperature performance, enhanced safety and lower operating costs. The company also says its battery management system gives the sodium-ion system an additional 20 percent safety margin compared with lithium-ion batteries.

The system also uses a top-discharge airflow design that CATL says reduces heat generation by nearly 30 percent compared with conventional systems. CATL says auxiliary power consumption drops from the industry average of 2 percent to 1 percent.

That could be useful for large grid storage projects, especially in places where heat, storms or heavy power demand can strain local systems. CATL also says TENER Sodium operates at only 65 decibels, which is 10 decibels lower than conventional systems. That could help address local concerns when battery storage sites are built closer to where power is needed.

Sodium-ion battery shipments signal commercial momentum

CATL says TENER Sodium has reached full commercial maturity across technology, production capacity and supply chain readiness. The company says it has worked on sodium-ion battery research and development since 2016. CATL also says it has invested about $1.4 billion, depending on exchange rates, over the past decade.

CATL has expanded sodium-ion production lines at its Fuding base in China. The company says that adds 40 gigawatt-hours of annual capacity. Another planned base in Jining, Shandong, could support 160 gigawatt-hours of sodium-ion battery production capacity. CATL also says it signed a three-year, 60-gigawatt-hour sodium-ion energy storage order with HyperStrong in April 2026. The company described it as the world’s largest sodium-ion commercial contract.

Advertisement

Those numbers show CATL is treating sodium-ion storage as a serious commercial product. That said, U.S. adoption is a separate question. American utilities, regulators and developers would still need to weigh cost, performance, supply chain risk and security concerns.

What this means to you

This sodium-ion battery system may never be something you buy directly. However, the technology behind it could still affect how electricity gets stored and delivered. If sodium-ion storage proves reliable, it could give energy companies another way to support the grid. That may become more important as AI data centers increase electricity demand.

Better storage can help utilities use power more efficiently. It can also help balance supply when demand rises quickly. Still, there are limits. A new battery chemistry will not fix old transmission lines, slow permitting or local grid bottlenecks by itself.

The real takeaway is that sodium-ion batteries could become part of the grid storage mix. They are not a magic fix, but they could help energy companies build more flexible storage projects.

Watch the CyberGuy Live replay: Lock Down Your Phone in 30 Minutes

Your phone holds your email, passwords, photos, banking apps and personal data. In this free CyberGuy Live replay, Kurt the CyberGuy walks you step by step through simple phone security fixes you can do at your own pace. You’ll learn how to improve your privacy settings, spot the latest phone scams, use trusted security tools and walk away with a simple checklist to stay protected. Watch the replay and get our checklist here: CyberGuyLive.com.

Advertisement

Kurt’s key takeaways

CATL’s new sodium-ion battery may sound like a faraway energy story, especially since there is no announced U.S. rollout yet. Still, it is important because the grid is under growing pressure from AI data centers, extreme weather and the need to store more renewable power. What stands out is the use of sodium, which CATL says is far more common than lithium. If this technology proves reliable in major energy projects, it could give utilities another way to store power and keep the grid steadier when demand spikes.

Would you be comfortable with Chinese-made battery systems supporting part of the U.S. electric grid if they helped make power more reliable? Let us know by writing to us at CyberGuy.com.

CATL says sodium is far more common than lithium, which could give energy companies another storage option as electricity demand rises. (CATL)

CLICK HERE TO DOWNLOAD THE FOX NEWS APP

Sign up for my FREE CyberGuy Report

Advertisement
  • Get my best tech tips, urgent security alerts and exclusive deals delivered straight to your inbox.
  • For simple, real-world ways to spot scams early and stay protected, visit CyberGuy.com – trusted by millions who watch CyberGuy on TV daily.
  • Plus, you’ll get instant access to my Ultimate Scam Survival Guide free when you join.

Copyright 2026 CyberGuy.com. All rights reserved.

Continue Reading

Technology

Tesla driver faces manslaughter charges over Texas crash that killed a woman inside her home

Published

on

Tesla driver faces manslaughter charges over Texas crash that killed a woman inside her home

On the video, I saw BUTLER’s Tesla continue to increase in speed, and saw the amount of pressure being applied to the accelerator pedal also increase in speed. In about six (6) seconds, the accelerator pedal was pressed all the way down to 100%, “pedal to the metal,” and the vehicle reached a speed of 73 miles per hour, more than double the speed limit on that residential street. The Tesla continued straight towards the middle of the cul-de-sac, struck the curb of the complainant’s driveway, and went airborne towards the front of the home… I noted that the brake pedal was never pressed in the final minute before the crash.”

Continue Reading
Advertisement

Trending