this post was submitted on 17 Nov 2023
8 points (78.6% liked)

Australia

3507 readers
152 users here now

A place to discuss Australia and important Australian issues.

Before you post:

If you're posting anything related to:

If you're posting Australian News (not opinion or discussion pieces) post it to Australian News

Rules

This community is run under the rules of aussie.zone. In addition to those rules:

Banner Photo

Congratulations to @Tau@aussie.zone who had the most upvoted submission to our banner photo competition

Recommended and Related Communities

Be sure to check out and subscribe to our related communities on aussie.zone:

Plus other communities for sport and major cities.

https://aussie.zone/communities

Moderation

Since Kbin doesn't show Lemmy Moderators, I'll list them here. Also note that Kbin does not distinguish moderator comments.

Additionally, we have our instance admins: @lodion@aussie.zone and @Nath@aussie.zone

founded 1 year ago
MODERATORS
lodion@aussie.zone
unionagainstdhmo@aussie.zone
dalekerrigan@aussie.zone
Fluid@aussie.zone
bestusername@aussie.zone
eatham@aussie.zone
8
Can you detect the bogus bank apps? Try our malware quiz (www.abc.net.au)
submitted 10 months ago by unionagainstdhmo@aussie.zone to c/australia@aussie.zone
14 comments fedilink hide all child comments
all 16 comments
sorted by: hot top controversial new old
[–] Pappabosley@lemmy.world 9 points 10 months ago* (last edited 10 months ago) (3 children)

The key thing missing is the URL and I would presume the hacker page wouldn't have a πŸ”’ both things I would be looking at

[–] unionagainstdhmo@aussie.zone 10 points 10 months ago

These are actually for fake banking apps - not the websites, it's probably more of a concern with Android because of side-loading and how loose the play store is. Also the lock symbol is really easy to get - SSL/TLS is free (Let's Encrypt) and doesn't mean that the website is legit, it just means that what you're seeing is actually www.veryrealcommonwealthbankpage.xyz, not the official Commonwealth Bank site and that all communication cannot be intercepted by a third party

[–] Taleya@aussie.zone 9 points 10 months ago (2 children)

Not only that 'missing the option to hide your password' wtf. That's the opposite of the eye icon.

Absolute panic bait. 'Can you determine the legitimacy of these login pages for banks you don't use based on incomplete data?? THEN YOU'RE IN DANGER!!!"

[–] v81@lemmy.world 3 points 10 months ago (1 children)

I stopped right there too. They have it arse about.

[–] surreptitiouswalk@aussie.zone -1 points 10 months ago

Wow did you not read the article? This isn't about a website login, it's about fake hijacked login screens on apps which last I checked, don't have URLs shown.

[–] wscholermann@aussie.zone 2 points 10 months ago* (last edited 10 months ago)

Agreed and I thought the exact same thing, although the website URL and possibly even the SSL certificate details still needs to be checked even with the πŸ”.

[–] bestusername@aussie.zone 7 points 10 months ago (2 children)

Hey ABC, why would I know what other banks login pages look like?

[–] MHLoppy2@aussie.zone 6 points 10 months ago* (last edited 10 months ago)

Given that they remind readers what brands an Android phone phone could be, I don't think the article is aimed at many aussie zoners.

I guess they're trying to drive home that the scammer isn't coming at you with a poorly worded email riddled with typos here - the overlay can look legitimate (even if in some cases it still has typos lol). Probably would've been a bit much for them to cover every banking interface tbf.

[–] PetulantBandicoot@aussie.zone 5 points 10 months ago

Not gonna lie, only reason I picked the right one on Q3 was cause of the ad.

[–] Outsider9042@aussie.zone 3 points 10 months ago* (last edited 10 months ago)

Well spotted, there was a spelling mistake.

There was? I just picked the one that had the uglier UX.

Still got them all right.

[–] shatterling@lemm.ee 3 points 10 months ago* (last edited 10 months ago)

What is with the borked version number in the real Greater Bank page? That actually caught me out

V 0.0.0 -2

[–] autotldr@lemmings.world 1 points 10 months ago

This is the best summary I could come up with:

The malware is powerful β€” it can record your calls, harvest your contacts, evade antivirus, bypass multi-factor authentication, log what you type and send you text messages.

Exclusive new data obtained by the ABC has uncovered what appears to be the first major distribution campaign of the malware, with Australians identified as specific targets.

This latest campaign against Australians was uncovered by Dario Durando, a senior threat analyst from ThreatFabric, a banking security platform based in the Netherlands.

An advertisement spruiking Octo boasts the malware has a "high survival rate", gives hackers "full device control" and has the ability to steal two-factor authentication codes.

Eward Driehuis,Β vice president of fraud engineering at ThreatFabric, said the group responsible for Octo was Russian-speaking and possibly linked to the Russian cybercrime underworld.

Stephanie Tonkin from the Consumer Action Law Centre said Australian banks weren't doing enough to protect customers, who were being hoodwinked by increasingly sophisticated scams.

The original article contains 1,200 words, the summary contains 153 words. Saved 87%. I'm a bot and I'm open source!

[–] No1@aussie.zone 0 points 10 months ago (1 children)

You can always go here to check if it's legit

[–] No1@aussie.zone 1 points 10 months ago

The fact I got 2 downvotes means I was successful at least twice.

It gives me so much pleasure πŸ˜‚